| CVE-2017-5929 |
critical |
9.8 |
9.8 |
|
|
|
9y ago |
QOS.ch Logback vulnerable to Deserialization of Untrusted Data |
| CVE-2021-42550 |
medium |
— |
5.5 |
|
|
|
5y ago |
Deserialization of Untrusted Data in logback |
| CVE-2026-1225 |
unknown |
— |
— |
|
|
|
4mo ago |
Logback allows an attacker to instantiate classes already present on the class path |
| CVE-2025-11226 |
unknown |
— |
— |
|
|
|
8mo ago |
ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.18 in Java applications, allows an attacker to execute arbitrary code by comprom… |
| CVE-2024-12798 |
unknown |
— |
— |
|
|
|
2y ago |
QOS.CH logback-core Expression Language Injection vulnerability |
| CVE-2024-12801 |
unknown |
— |
— |
|
|
|
2y ago |
QOS.CH logback-core Server-Side Request Forgery vulnerability |
| CVE-2023-6481 |
unknown |
— |
— |
|
|
|
3y ago |
Logback is vulnerable to an attacker mounting a Denial-Of-Service attack by sending poisoned data |
| CVE-2023-6378 |
unknown |
— |
— |
|
|
|
3y ago |
logback serialization vulnerability |