log4j-core and log4j-api version 2.15.0 is showing up on vulnerability scans.
https://nvd.nist.gov/vuln/detail/CVE-2025-68161
I have updated the plugin locally by replacing log4j with latest v2.x jar files to mitigate.
I have advised TeamCity marketplace and raised issue here.
Please update the versions in published plugin.
log4j-core and log4j-api version 2.15.0 is showing up on vulnerability scans.
https://nvd.nist.gov/vuln/detail/CVE-2025-68161
I have updated the plugin locally by replacing log4j with latest v2.x jar files to mitigate.
I have advised TeamCity marketplace and raised issue here.
Please update the versions in published plugin.