Ch.qos.logback:logback-core
This hub aggregates every CVE we track for Ch.qos.logback:logback-core, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
5
CVEs tracked
1
Critical
3
High
0
In CISA KEV
Severity distribution
HIGH3MEDIUM1CRITICAL1
Monthly trend
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 5 most recently published vulnerabilities affecting Ch.qos.logback:logback-core.
- CVE-2024-12798JaninoEventEvaluator vulnerability7.3
- CVE-2023-6481Logback "receiver" DOS vulnerability CVE-2023-6378 incomplete fix7.1
- CVE-2023-6378Logback "receiver" DOS vulnerability 7.1
- CVE-2021-42550RCE from attacker with configuration edit priviledges through JNDI lookup6.6
- CVE-2017-5929QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components.9.8
Product normalization is registry-driven with AI assist and human review. How it works