Describe the security issue
Aikido indicates that org.apache.logging.log4j:log4j-core:2.25.3 is affected by 4 vulnerabilities:
CVE-2026-34477
CVE-2026-34478
CVE-2026-34480
CVE-2026-49844
Vulnerability Location
This is a third party library.
Environment (please complete the following information if it is applicable to the issue)
Every environment. Vulnerable library bundled with software.
Suggested remediation
Update org.apache.logging.log4j:log4j-core to 2.25.5 or 2.26.1.
Additional context
Add any other context about the problem here.
Describe the security issue
Aikido indicates that org.apache.logging.log4j:log4j-core:2.25.3 is affected by 4 vulnerabilities:
CVE-2026-34477
CVE-2026-34478
CVE-2026-34480
CVE-2026-49844
Vulnerability Location
This is a third party library.
Environment (please complete the following information if it is applicable to the issue)
Every environment. Vulnerable library bundled with software.
Suggested remediation
Update org.apache.logging.log4j:log4j-core to 2.25.5 or 2.26.1.
Additional context
Add any other context about the problem here.