VYPR

Log4j API

by Apache

CVEs (1)

  • CVE-2026-49844Jul 12, 2026
    risk 0.00cvss epss

    Improper encoding of non-finite floating-point values during MapMessage JSON serialization in Apache Log4j API produces output that is not valid JSON. This issue affects Apache Log4j API versions 2.13.1 through 2.25.4 and version 2.26.0. The fix for CVE-2026-34481 did not cover…