{"id":"ROOT-APP-MAVEN-CVE-2022-23307","summary":"CVE-2022-23307 in io.root.log4j:log4j - Patched by Root","details":"Root has patched CVE-2022-23307 in the io.root.log4j:log4j package for Root:Maven. Multiple fixed versions available.","modified":"2026-05-19T13:00:06.141703563Z","published":"2026-05-19T09:03:57Z","upstream":["CVE-2022-23307"],"database_specific":{"source":"Root","distro_version":"","distro":"maven"},"affected":[{"package":{"name":"io.root.log4j:log4j","ecosystem":"Root:Maven"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.12-root.io.1"}]}],"database_specific":{"root_patched":true,"root_patch_version":"root.io.1","source":"https://api.root.io/external/osv/ROOT-APP-MAVEN-CVE-2022-23307.json","total_fixed_versions":1,"upstream_version":"1.2.12","all_fixed_versions":["1.2.12-root.io.1"]}}],"schema_version":"1.7.5"}