CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

SUSE CVE•added 2025/10/05 2:57 a.m.•3 views

SUSE CVE-2023-6378

A serialization vulnerability in logback receiver component part of logback version 1.4.11 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data...

7.5CVSS7.2AI score0.0063EPSS

Exploits0References2

SUSE CVE•added 2025/10/05 2:57 a.m.•4 views

SUSE CVE-2023-6481

A serialization vulnerability in logback receiver component part of logback version 1.4.13, 1.3.13 and 1.2.12 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data...

7.5CVSS7.2AI score0.00224EPSS

Exploits0References2

Redos•added 2024/07/04 12:0 a.m.•19 views

ROS-20240704-06

Vulnerability of logback receiver component of logging library logback is related to recovery of inaccurate data in memory inaccurate data. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.5CVSS6.5AI score0.0063EPSS

Exploits0

Veracode•added 2024/06/14 4:52 p.m.•26 views

Denial Of Service (DoS)

ch.qos.logback:logback-classic is vulnerable to Denial Of Service DoS. The vulnerability is due to the readObject method in the LoggingEventVO class which fails to check the length of an argument array during deserialization. An attacker could send crafted data, resulting in Denial of Service DoS...

7.5CVSS6.5AI score0.00224EPSS

Exploits0References4Affected Software2

Tenable Nessus•added 2024/02/28 12:0 a.m.•30 views

Atlassian Confluence 6.0.1 < 7.19.18 / 7.20.x < 8.5.5 / 8.6.x < 8.7.2 / 8.8.0 (CONFSERVER-94110)

The version of Atlassian Confluence Server running on the remote host is affected by a vulnerability as referenced in the CONFSERVER-94110 advisory. - A serialization vulnerability in logback receiver component part of logback version 1.4.11 allows an attacker to mount a Denial-Of-Service attack ...

7.5CVSS7.1AI score0.0063EPSS

Exploits0References2

Atlassian•added 2024/01/17 6:46 a.m.•40 views

DoS (Denial of Service) ch.qos.logback:logback-classic Dependency in Confluence Data Center and Server

This High severity ch.qos.logback:logback-classic Dependency vulnerability was introduced in versions 6.0.1 of Confluence Data Center and Server. This ch.qos.logback:logback-classic Dependency vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:...

7.5CVSS7.1AI score0.0063EPSS

Exploits0

OSV•added 2023/12/04 9:15 a.m.•0 views

UBUNTU-CVE-2023-6481

A serialization vulnerability in logback receiver component part of logback version 1.4.13, 1.3.13 and 1.2.12 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data...

7.5CVSS5.8AI score0.00224EPSS

Exploits0References5

Cvelist•added 2023/11/29 12:2 p.m.•27 views

CVE-2023-6378 Logback "receiver" DOS vulnerability

A serialization vulnerability in logback receiver component part of logback version 1.4.11 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data...

7.1CVSS7.6AI score0.0063EPSS

Exploits0References1

CNNVD•added 2023/11/29 12:0 a.m.•1 views

logback code issue vulnerability

Quality Open Software Logback is a logging framework for Java applications from Quality Open Software, Switzerland. A security vulnerability exists in logback version 1.4.11, which stems from a denial of service DOS vulnerability in the component logback receiver...

7.5CVSS6.7AI score0.0063EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by