CVE-2026-34481 | Apache Log4j JSON Template Layout up to 2.25.3/3.0.0-beta3 JsonTemplateLayout escape output

Inserito da Angelo Barbosa | Apr 10, 2026 | CVE

A vulnerability was found in Apache Log4j JSON Template Layout up to 2.25.3/3.0.0-beta3. It has been declared as problematic. This impacts an unknown function of the component JsonTemplateLayout. The manipulation results in escaping of output.

This vulnerability was named CVE-2026-34481. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.

CVE-2026-34481 | Apache Log4j JSON Template Layout up to 2.25.3/3.0.0-beta3 JsonTemplateLayout escape output

Post correlati

CVE-2024-42058 | Zyxel ATP/USG FLEX/USG FLEX 50(W)/USG20(W)-VPN up to 5.38 Packets null pointer dereference

CVE-2024-32392 | CmSimple 5.15 functions.php cross site scripting

CVE-2025-14548 | Calendar Plugin up to 1.3.16 on WordPress event_desc cross site scripting

CVE-2025-27238 | Zabbix up to 7.0.13/7.2.7 API hostprototype.get information disclosure