{ "_class" : "io.jenkins.plugins.analysis.core.restapi.ReportApi", "issues" : [ { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_batch_oracle at: /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_batch_oracle at: /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_batch_postgres at: /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_batch_postgres at: /var/govway/batch/generatoreStatistiche/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_oracle at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_oracle at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_oracle at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_oracle at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_oracle at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_oracle at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_oracle at: /usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_oracle at: /usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_oracle at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_oracle at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_standalone at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_standalone at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_standalone at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_standalone at: /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_standalone at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_standalone at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_standalone at: /usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_standalone at: /usr/local/tomcat/webapps/govwayConsole.war:WEB-INF/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "log4j-core-2.25.0.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "fingerprint" : "FALLBACK-1bbb2f41", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_standalone at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1386", "severity" : "NORMAL", "toString" : "log4j-core-2.25.0.jar(1,0): GHSA-vc5p-v9hr-52mj-log4j-core: : GHSA-vc5p-v9hr-52mj-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-vc5p-v9hr-52mj medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-vc5p-v9hr-52mj**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | log4j-core | 2.25.0 | 2.25.3 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-core-2.25.0.jar | github:language:java | [GHSA-vc5p-v9hr-52mj](https://github.com/advisories/GHSA-vc5p-v9hr-52mj) |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.0 was found in image linkitaly/govway:master4_standalone at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-core-2.25.0.jar", "type" : "GHSA-vc5p-v9hr-52mj-log4j-core" } ], "size" : 12, "toString" : "12 warnings (normal: 12)" }