{
  "threat_severity" : "Moderate",
  "public_date" : "2026-04-10T15:43:00Z",
  "bugzilla" : {
    "description" : "org.apache.logging.log4j: Apache Log4j JsonTemplateLayout: Denial of Service via invalid JSON output",
    "id" : "2457321",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2457321"
  },
  "cvss3" : {
    "cvss3_base_score" : "6.5",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
    "status" : "verified"
  },
  "cwe" : "CWE-241",
  "details" : [ "Apache Log4j's  JsonTemplateLayout https://logging.apache.org/log4j/2.x/manual/json-template-layout.html , in versions up to and including 2.25.3, produces invalid JSON output when log events contain non-finite floating-point values (NaN, Infinity, or -Infinity), which are prohibited by RFC 8259. This may cause downstream log processing systems to reject or fail to index affected records.\nAn attacker can exploit this issue only if both of the following conditions are met:\n*  The application uses JsonTemplateLayout.\n*  The application logs a MapMessage containing an attacker-controlled floating-point value.\nUsers are advised to upgrade to Apache Log4j JSON Template Layout 2.25.4, which corrects this issue.", "A flaw was found in Apache Log4j's JsonTemplateLayout. This vulnerability allows a remote attacker to disrupt log processing systems. By sending log events that include specific non-numeric floating-point values, the attacker can cause the JsonTemplateLayout to generate invalid JSON output. This invalid output can then lead to downstream systems rejecting or failing to index these logs, effectively causing a denial of service for log analysis." ],
  "statement" : "Exploitation of this flaw requires an application to be configured with JsonTemplateLayout and to log attacker-controlled non-finite floating-point values within a MapMessage, which is not a default or common configuration in Red Hat products.",
  "affected_release" : [ {
    "product_name" : "Red Hat Data Grid 8.6.1",
    "release_date" : "2026-06-02T00:00:00Z",
    "advisory" : "RHSA-2026:22619",
    "cpe" : "cpe:/a:redhat:jboss_data_grid:8",
    "package" : "log4j-layout-template-json"
  }, {
    "product_name" : "Red Hat Offline Knowledge Portal 1.2.4",
    "release_date" : "2026-05-28T00:00:00Z",
    "advisory" : "RHSA-2026:21773",
    "cpe" : "cpe:/a:redhat:offline_knowledge_portal:1.2::el9",
    "package" : "offline-knowledge-portal/rhokp-rhel9:1779996999"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat AMQ Broker 7",
    "fix_state" : "Affected",
    "package_name" : "log4j-layout-template-json",
    "cpe" : "cpe:/a:redhat:amq_broker:7"
  }, {
    "product_name" : "Red Hat build of Apache Camel for Spring Boot 4",
    "fix_state" : "Affected",
    "package_name" : "log4j-layout-template-json",
    "cpe" : "cpe:/a:redhat:camel_spring_boot:4"
  }, {
    "product_name" : "Red Hat Enterprise Linux 8",
    "fix_state" : "Affected",
    "package_name" : "log4j:2/log4j",
    "cpe" : "cpe:/o:redhat:enterprise_linux:8"
  }, {
    "product_name" : "Red Hat Enterprise Linux 9",
    "fix_state" : "Will not fix",
    "package_name" : "log4j",
    "cpe" : "cpe:/o:redhat:enterprise_linux:9"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 7",
    "fix_state" : "Will not fix",
    "package_name" : "log4j-layout-template-json",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform 8",
    "fix_state" : "Not affected",
    "package_name" : "log4j-layout-template-json",
    "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:8"
  }, {
    "product_name" : "Red Hat JBoss Enterprise Application Platform Expansion Pack",
    "fix_state" : "Not affected",
    "package_name" : "log4j-layout-template-json",
    "cpe" : "cpe:/a:redhat:jbosseapxp"
  }, {
    "product_name" : "streams for Apache Kafka 3",
    "fix_state" : "Affected",
    "package_name" : "log4j-layout-template-json",
    "cpe" : "cpe:/a:redhat:amq_streams:3"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2026-34481\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-34481\nhttps://github.com/apache/logging-log4j2/pull/4080\nhttps://lists.apache.org/thread/n34zdv00gbkdbzt2rx9rf5mqz6lhopcv\nhttps://logging.apache.org/cyclonedx/vdr.xml\nhttps://logging.apache.org/log4j/2.x/manual/json-template-layout.html\nhttps://logging.apache.org/security.html#CVE-2026-34481" ],
  "name" : "CVE-2026-34481",
  "mitigation" : {
    "value" : "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
    "lang" : "en:us"
  },
  "csaw" : false
}