CVE-2023-6378 @ Maven-ch.qos.logback:logback-classic-1.2.6 #114

SamHeadrickCx · 2024-06-19T14:01:24Z

Checkmarx (SCA): Vulnerable Package
Vulnerability: Read More about CVE-2023-6378
Checkmarx Project: SamHeadrickCx/easybuggy4sb
Repository URL: https://github.com/SamHeadrickCx/easybuggy4sb
Branch: master
Scan ID: 94cbf8fd-fbe8-49c7-9c55-da0658f9cbfc

A serialization vulnerability in logback receiver component part of logback versions prior to 1.2.13, 1.3.x prior to 1.3.12, and 1.4.x prior to 1.4.12 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data.

Additional Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: NONE
Availability impact: HIGH
Remediation Upgrade Recommendation: 1.2.13

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2023-6378 @ Maven-ch.qos.logback:logback-classic-1.2.6 #114

CVE-2023-6378 @ Maven-ch.qos.logback:logback-classic-1.2.6 #114

SamHeadrickCx commented Jun 19, 2024

CVE-2023-6378 @ Maven-ch.qos.logback:logback-classic-1.2.6 #114

CVE-2023-6378 @ Maven-ch.qos.logback:logback-classic-1.2.6 #114

Comments

SamHeadrickCx commented Jun 19, 2024