2 matches found
The vulnerability of the org.slf4j.ext.EventData component in the slf4j-ext library of SLF4J allows attackers to circumvent existing security restrictions.
The vulnerability of the org.slf4j.ext.EventData component in the slf4j-ext library of SLF4J lies in the possibility of memory corruption due to an unreliable data structure. Exploiting this vulnerability allows a remote attacker to circumvent existing security restrictions...
slf4j: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution
An XML deserialization vulnerability was discovered in slf4j's EventData, which accepts an XML serialized string and can lead to arbitrary code execution...