Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

464 matches found

RedhatCVE
RedhatCVEadded 3 days ago7 views

CVE-2026-13006

A flaw was found in logback-core, a logging framework for Java applications. This vulnerability allows an attacker with existing privileges and write access to a configuration file, or the ability to inject a malicious environment variable, to execute arbitrary code. This can be achieved by...

7CVSS6.1AI score0.00122EPSS
Exploits0References4
OSV
OSVadded 4 days ago2 views

DEBIAN-CVE-2026-13006

ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.35 in Java applications, allows an attacker to execute arbitrary code circumventing existing protections against CVE-2025-11226 by compromising an existing logback configuration...

7CVSS6.1AI score0.00122EPSS
Exploits0References1
NVD
NVDadded 4 days ago12 views

CVE-2026-13006

ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.35 in Java applications, allows an attacker to execute arbitrary code circumventing existing protections against CVE-2025-11226 by compromising an existing logback configuration...

7CVSS0.00122EPSS
Exploits0References1
Cvelist
Cvelistadded 4 days ago33 views

CVE-2026-13006 Incomplete protection against CVE-2025-11226

ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.35 in Java applications, allows an attacker to execute arbitrary code circumventing existing protections against CVE-2025-11226 by compromising an existing logback configuration...

7CVSS0.00122EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 4 days ago5 views

CVE-2026-13006

ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.35 in Java applications, allows an attacker to execute arbitrary code circumventing existing protections against CVE-2025-11226 by compromising an existing logback configuration...

7CVSS6.1AI score0.00122EPSS
Exploits0References3Affected Software1
EUVD
EUVDadded 4 days ago6 views

EUVD-2026-38691

ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.34 in Java applications, allows an attacker to execute arbitrary code circumventing existing protections against CVE-2025-11226 by compromising an existing logback configuration...

7CVSS6.2AI score0.00181EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 4 days ago4 views

CVE-2026-13006 Incomplete protection against CVE-2025-11226

ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.35 in Java applications, allows an attacker to execute arbitrary code circumventing existing protections against CVE-2025-11226 by compromising an existing logback configuration...

7CVSS6.1AI score0.00122EPSS
Exploits0References1
CVE
CVEadded 4 days ago26 views

CVE-2026-13006

CVE-2026-13006 affects Java applications using logback-core up to version 1.5.34. The issue arises in conditional configuration file processing, allowing an attacker to execute arbitrary code while bypassing protections against CVE-2025-11226. A successful attack requires Janino on the classpath ...

7CVSS6.1AI score0.00122EPSS
Exploits0References1
Debian CVE
Debian CVEadded 4 days ago4 views

CVE-2026-13006

ACE vulnerability in conditional configuration file processing by QOS.CH logback-core up to and including version 1.5.35 in Java applications, allows an attacker to execute arbitrary code circumventing existing protections against CVE-2025-11226 by compromising an existing logback configuration...

7CVSS6.1AI score0.00122EPSS
Exploits0
OSV
OSVadded 6 days ago7 views

ROOT-APP-MAVEN-CVE-2025-11226 CVE-2025-11226 in io.root.ch.qos.logback:logback-core - Patched by Root

Root has patched CVE-2025-11226 in the io.root.ch.qos.logback:logback-core package for Root:Maven. Multiple fixed versions available...

6.4CVSS5.2AI score0.00181EPSS
Exploits0
OSV
OSVadded 6 days ago8 views

ROOT-APP-MAVEN-CVE-2024-12798 CVE-2024-12798 in io.root.ch.qos.logback:logback-core - Patched by Root

Root has patched CVE-2024-12798 in the io.root.ch.qos.logback:logback-core package for Root:Maven. Multiple fixed versions available...

5.5CVSS6.6AI score0.00404EPSS
Exploits0
OSV
OSVadded 6 days ago7 views

ROOT-APP-MAVEN-CVE-2026-1225 CVE-2026-1225 in io.root.ch.qos.logback:logback-core - Patched by Root

Root has patched CVE-2026-1225 in the io.root.ch.qos.logback:logback-core package for Root:Maven. Multiple fixed versions available...

5CVSS5.8AI score0.00159EPSS
Exploits0
OSV
OSVadded 6 days ago6 views

ROOT-APP-MAVEN-CVE-2017-5929 CVE-2017-5929 in io.root.ch.qos.logback:logback-classic - Patched by Root

Root has patched CVE-2017-5929 in the io.root.ch.qos.logback:logback-classic package for Root:Maven. Multiple fixed versions available...

9.8CVSS7.3AI score0.07501EPSS
Exploits0
OSV
OSVadded 6 days ago7 views

ROOT-APP-MAVEN-CVE-2021-42550 CVE-2021-42550 in io.root.ch.qos.logback:logback-core - Patched by Root

Root has patched CVE-2021-42550 in the io.root.ch.qos.logback:logback-core package for Root:Maven. Multiple fixed versions available...

8.5CVSS6.8AI score0.04439EPSS
Exploits1
OSV
OSVadded 6 days ago14 views

ROOT-APP-MAVEN-CVE-2023-6378 CVE-2023-6378 in io.root.ch.qos.logback:logback-classic - Patched by Root

Root has patched CVE-2023-6378 in the io.root.ch.qos.logback:logback-classic package for Root:Maven. Multiple fixed versions available...

7.1CVSS7.1AI score0.009EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linuxadded 2026/06/14 12:0 a.m.5 views

logback-1.5.34-2.1 on GA media (moderate)

logback-1.5.34-2.1 on GA media Announcement ID: openSUSE-SU-2026:11016-1 Rating: moderate Cross-References: CVE-2026-9828 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the logback-1.5.34-2.1...

6.3CVSS5.3AI score0.0037EPSS
Exploits0
OSV
OSVadded 2026/06/12 12:0 a.m.6 views

OPENSUSE-SU-2026:11016-1 logback-1.5.34-2.1 on GA media

These are all security issues fixed in the logback-1.5.34-2.1 package on the GA media of openSUSE Tumbleweed...

6.3CVSS5.3AI score0.0037EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linuxadded 2026/06/12 12:0 a.m.4 views

logback-1.5.34-1.1 on GA media (moderate)

logback-1.5.34-1.1 on GA media Announcement ID: openSUSE-SU-2026:10999-1 Rating: moderate Cross-References: CVE-2026-10532 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the logback-1.5.34-1....

6.3CVSS5.3AI score0.00342EPSS
Exploits0
OSV
OSVadded 2026/06/11 12:0 a.m.2 views

OPENSUSE-SU-2026:10999-1 logback-1.5.34-1.1 on GA media

These are all security issues fixed in the logback-1.5.34-1.1 package on the GA media of openSUSE Tumbleweed...

6.3CVSS5.4AI score0.00342EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/08 5:16 p.m.8 views

CVE-2026-10532

A flaw was found in the logback-core component of QOS.CH Sarl logback. This deserialization of untrusted data vulnerability allows a remote attacker, by influencing serialized data sent to SimpleSocketServer or SimpleSSLSocketServer, to instantiate Proxy objects. Although heavily restricted by...

6.3CVSS5.6AI score0.00342EPSS
Exploits0References2
Rows per page
Query Builder