CVE-2024-12801 | QOS logback up to 1.5.12 XML Configuration File server-side request forgery

Inserito da Angelo Barbosa | Dic 19, 2024 | CVE

A vulnerability classified as critical has been found in QOS logback up to 1.5.12. Affected is an unknown function of the component XML Configuration File Handler. The manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2024-12801. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-12801 | QOS logback up to 1.5.12 XML Configuration File server-side request forgery

Post correlati

CVE-2022-48577 | Apple macOS APFS Privilege Escalation

CVE-2024-41256 | filestash 0.4 TLS Certificate Verification ShareProofVerifier certificate validation

CVE-2024-9940 | Calculated Fields Form Plugin up to 5.2.45 on WordPress cross site scripting

CVE-2024-7157 | TOTOLINK A3100R 4.1.2cu.5050_B20200504 cstecgi.cgi getSaveConfig http_host buffer overflow