0.001 Low
EPSS
Percentile
38.8%
A vulnerability was found in the Log4cxx library. This issue causes a SQL injection in Log4cxx when using the ODBC appender to send log messages to a database. No fields sent to the database were properly escaped for SQL injection.
bugzilla.redhat.com/show_bug.cgi?id=2196727
nvd.nist.gov/vuln/detail/CVE-2023-31038
www.cve.org/CVERecord?id=CVE-2023-31038