pkg:Maven/ch.qos.logback:logback-core

8 total CVEsCRITICAL1HIGH2MEDIUM1

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2017-5929logback - security update
    from 0, < 1.2.0
  • HIGH7.1CVE-2023-6481Logback is vulnerable to an attacker mounting a Denial-Of-Service attack by sending poisoned data
    >= 1.4.13, < 1.4.14
  • HIGH7.1CVE-2023-6378logback serialization vulnerability
    >= 1.3.0, < 1.3.12
  • MEDIUM6.6CVE-2021-42550Deserialization of Untrusted Data in logback
    from 0, < 1.2.9
  • CVE-2026-1225Logback allows an attacker to instantiate classes already present on the class path
    from 0, < 1.5.25
  • CVE-2025-11226QOS.CH logback-core is vulnerable to Arbitrary Code Execution through file processing
    >= 1.4.0, < 1.5.19
  • CVE-2024-12798QOS.CH logback-core Expression Language Injection vulnerability
    >= 1.4.0, < 1.5.13
  • CVE-2024-12801QOS.CH logback-core Server-Side Request Forgery vulnerability
    >= 1.4.0, < 1.5.13