Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package log4js, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2022-21704 — CVSS 5.5 (medium): log4js-node is a port of log4js to node.js. In affected versions default file permissions for log files created by the file, fileSync and…