Vulnerabilities (CVE)

Filtered by vendor Apache Subscribe
Filtered by product Chainsaw
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-23307 3 Apache, Oracle, Qos 26 Chainsaw, Log4j, Advanced Supply Chain Planning and 23 more 2024-11-21 9.0 HIGH 8.8 HIGH
CVE-2020-9493 identified a deserialization issue that was present in Apache Chainsaw. Prior to Chainsaw V2.0 Chainsaw was a component of Apache Log4j 1.2.x where the same issue exists.
CVE-2020-9493 2 Apache, Qos 3 Chainsaw, Log4j, Reload4j 2024-11-21 6.8 MEDIUM 9.8 CRITICAL
A deserialization flaw was found in Apache Chainsaw versions prior to 2.1.0 which could lead to malicious code execution.