Vulnerabilities (CVE)

Filtered by vendor Qos Subscribe
Filtered by product Logback
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-6481 1 Qos 1 Logback 2024-02-05 N/A 7.5 HIGH
A serialization vulnerability in logback receiver component part of logback version 1.4.13, 1.3.13 and 1.2.12 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data.
CVE-2023-6378 1 Qos 1 Logback 2024-02-05 N/A 7.5 HIGH
A serialization vulnerability in logback receiver component part of logback version 1.4.11 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data.
CVE-2021-42550 4 Netapp, Qos, Redhat and 1 more 6 Cloud Manager, Service Level Manager, Snap Creator Framework and 3 more 2024-02-04 8.5 HIGH 6.6 MEDIUM
In logback version 1.2.7 and prior versions, an attacker with the required privileges to edit configurations files could craft a malicious configuration allowing to execute arbitrary code loaded from LDAP servers.
CVE-2017-5929 2 Qos, Redhat 3 Logback, Satellite, Satellite Capsule 2024-02-04 7.5 HIGH 9.8 CRITICAL
QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components.