CVE-2023-6481

A serialization vulnerability in logback receiver component part of logback version 1.4.13, 1.3.13 and 1.2.12 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data.

References

Affected packages

Git / github.com/qos-ch/logback

Affected ranges

Type: GIT
Repo: https://github.com/qos-ch/logback
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

56f1617df4093ea14601aa80afcf21330a26a59b

Last affected

7ee000a0a359d239c60bb93a2f4f4ea467c38395

Last affected

a388193052c298ca87cc64192319df723288c6ab

Affected versions

Other

list

possible_mvn_issue

release_0.*

release_0.9.19

v0.*

v0.9.18

v0.9.20

v1.*

v1.0.10

v1.3.2

v1.4.2

v_0.*

v_0.9.21

v_0.9.22

v_0.9.23

v_0.9.24

v_0.9.25

v_0.9.26

v_0.9.27

v_0.9.28

v_0.9.29

v_0.9.30

v_1.*

v_1.0.0

v_1.0.1

v_1.0.11

v_1.0.12

v_1.0.13

v_1.0.2

v_1.0.3

v_1.0.4

v_1.0.5

v_1.0.6

v_1.0.7

v_1.0.8

v_1.0.9

v_1.1.0

v_1.1.1

v_1.1.10

v_1.1.4

v_1.1.5

v_1.1.6

v_1.1.7

v_1.1.8

v_1.2.0

v_1.2.1

v_1.2.10

v_1.2.11

v_1.2.12

v_1.2.2

v_1.2.3

v_1.2.4

v_1.2.5

v_1.2.6

v_1.2.7

v_1.2.8

v_1.2.9

v_1.3.0

v_1.3.0-alpha0

v_1.3.0-alpha10

v_1.3.0-alpha11

v_1.3.0-alpha12

v_1.3.0-alpha12-SNAPSHOT

v_1.3.0-alpha13

v_1.3.0-alpha14

v_1.3.0-alpha15

v_1.3.0-alpha16

v_1.3.0-alpha2

v_1.3.0-alpha3

v_1.3.0-alpha4

v_1.3.0-alpha5

v_1.3.0-alpha6

v_1.3.0-alpha7

v_1.3.0-alpha8

v_1.3.0-alpha9

v_1.3.0-beta0

v_1.3.1

v_1.3.10

v_1.3.11

v_1.3.12

v_1.3.13

v_1.3.3

v_1.3.4

v_1.3.5

v_1.3.6

v_1.3.7

v_1.3.8

v_1.3.9

v_1.4.0

v_1.4.1

v_1.4.10

v_1.4.11

v_1.4.12

v_1.4.13

v_1.4.3

v_1.4.4

v_1.4.5

v_1.4.6

v_1.4.7

v_1.4.8

v_1.4.9

v_1.8.0-alpha1

v_4.*

v_4.1.12

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-6481.json"