Package impact
Maven / ch.qos.logback:logback-core
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-42550 | medium | — | 5.5 | 5y ago | Deserialization of Untrusted Data in logback | |||
| CVE-2026-1225 | unknown | — | — | 4mo ago | Logback allows an attacker to instantiate classes already present on the class path | |||
| CVE-2024-12798 | unknown | — | — | 2y ago | QOS.CH logback-core Expression Language Injection vulnerability | |||
| CVE-2024-12801 | unknown | — | — | 2y ago | QOS.CH logback-core Server-Side Request Forgery vulnerability | |||
| CVE-2023-6481 | unknown | — | — | 3y ago | Logback is vulnerable to an attacker mounting a Denial-Of-Service attack by sending poisoned data | |||
| CVE-2023-6378 | unknown | — | — | 3y ago | logback serialization vulnerability |