Apache Chainsaw vulnerabilities
2 known vulnerabilities affecting apache/chainsaw.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2022-23307HIGHCVSS 8.8fixed in 2.1.02022-01-18
CVE-2022-23307 [HIGH] CVE-2022-23307: CVE-2020-9493 identified a deserialization issue that was present in Apache Chainsaw. Prior to Chain
CVE-2020-9493 identified a deserialization issue that was present in Apache Chainsaw. Prior to Chainsaw V2.0 Chainsaw was a component of Apache Log4j 1.2.x where the same issue exists.
nvd
CVE-2020-9493CRITICALCVSS 9.8fixed in 2.1.02021-06-16
CVE-2020-9493 [CRITICAL] CWE-502 CVE-2020-9493: A deserialization flaw was found in Apache Chainsaw versions prior to 2.1.0 which could lead to mali
A deserialization flaw was found in Apache Chainsaw versions prior to 2.1.0 which could lead to malicious code execution.
nvd