CVE-2018-1285 Blast Radius

CRITICAL • CVSS 9.8Apache log4net versions before 2.0.10 do not disable XML external entities when parsing log4net configuration files. This allows for XXE-based attacks

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2018-1285.

Start Free Scan →← Back to CVE-2018-1285