CVE-2025-43023 is a bit of an odd vulnerability.
https://support.hp.com/us-en/document/ish_12804224-12804228-16/hpsbpi04033
says:
HP Linux Imaging and Printing Software - Use of DSA Key
A potential security vulnerability has been identified in the HP Linux Imaging
and Printing Software do
Severity: moderate
Affected versions:
- Apache Log4cxx 0.11.0 before 1.5.0
Description:
Improper Output Neutralization for Logs vulnerability in Apache Log4cxx.
When using JSONLayout, not all payload bytes are properly escaped. If an
attacker-supplied message contains certain non-printable c
Severity: low
Affected versions:
- Apache Log4cxx before 1.5.0
Description:
Improper Output Neutralization for Logs vulnerability in Apache Log4cxx.
When using HTMLLayout, logger names are not properly escaped when writing out
to the HTML file.
If untrusted data is used to retrieve the name
Severity: low
Affected versions:
- Apache StreamPark 2.1.4 before 2.1.6
Description:
SQL Injection vulnerability in Apache StreamPark.
This issue affects Apache StreamPark: from 2.1.4 before 2.1.6.
Users are recommended to upgrade to version 2.1.6, which fixes the issue.
This vulnerability
