Apache Sling Commons Log <= 5.4.0 and Apache Sling API <= 2.25.0 are vulnerable to log injection. The ability to forge logs may allow an attacker to cover tracks by injecting fake logs and potentially corrupt log files.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: apache
Published:
Updated: 2024-08-03T07:46:43.499Z
Reserved: 2022-06-08T00:00:00
Link: CVE-2022-32549

No data.

Status : Modified
Published: 2022-06-22T15:15:08.407
Modified: 2024-11-21T07:06:36.523
Link: CVE-2022-32549
