VYPR

log4js-node

by log4js-node

CVEs (1)

  • CVE-2022-21704Jan 19, 2022
    risk 0.00cvss epss 0.00

    log4js-node is a port of log4js to node.js. In affected versions default file permissions for log files created by the file, fileSync and dateFile appenders are world-readable (in unix). This could cause problems if log files contain sensitive information. This would affect any…