Vulnerability-Lookup

CVE-2024-12801 (GCVE-0-2024-12801)

Vulnerability from cvelistv5 – Published: 2024-12-19 16:11 – Updated: 2025-01-03 13:40

Title

SaxEventRecorder vulnerable to Server-Side Request Forgery (SSRF) attacks

Summary

Server-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12 on the Java platform, allows an attacker to forge requests by compromising logback configuration files in XML. The attacks involves the modification of DOCTYPE declaration in XML configuration files.

Severity

2.4 (Low)


                        
                          CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:N/VA:L/SC:H/SI:H/SA:H/V:D/U:Clear

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-918 - Server-Side Request Forgery (SSRF)

Assigner

NCSC.ch

References

2 references

URL	Tags
https://logback.qos.ch/news.html#1.5.13
https://logback.qos.ch/news.html#1.3.15

Impacted products

1 product

Vendor	Product	Version
QOS.CH Sarl	logback	Affected: 0.1 , ≤ 1.3.14 (maven) Affected: 1.4.0 , ≤ 1.5.12 (maven) Unaffected: 1.3.15 Unaffected: 1.5.13

Credits

7asecurity

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-12801",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-12-20T20:15:51.883590Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-12-20T20:16:07.566Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "modules": [
            "XML configuration component"
          ],
          "platforms": [
            "Java"
          ],
          "product": "logback",
          "vendor": "QOS.CH Sarl",
          "versions": [
            {
              "lessThanOrEqual": "1.3.14",
              "status": "affected",
              "version": "0.1",
              "versionType": "maven"
            },
            {
              "lessThanOrEqual": "1.5.12",
              "status": "affected",
              "version": "1.4.0",
              "versionType": "maven"
            },
            {
              "status": "unaffected",
              "version": "1.3.15"
            },
            {
              "status": "unaffected",
              "version": "1.5.13"
            }
          ]
        }
      ],
      "configurations": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "The attacker needs to access and write to logback configuration files. Alternatively, the attacker needs to be able to force the use of a malicious logback configuration file at application start.\u003cbr\u003e"
            }
          ],
          "value": "The attacker needs to access and write to logback configuration files. Alternatively, the attacker needs to be able to force the use of a malicious logback configuration file at application start."
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "7asecurity"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cdiv\u003eServer-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12\u0026nbsp; on the Java platform, allows an attacker to \nforge requests by compromising logback configuration files in XML.\n\n\u003cbr\u003e\u003cbr\u003eThe attacks involves the modification of DOCTYPE declaration in\u0026nbsp; XML configuration files.\u003cbr\u003e\u003c/div\u003e"
            }
          ],
          "value": "Server-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12\u00a0 on the Java platform, allows an attacker to \nforge requests by compromising logback configuration files in XML.\n\n\n\nThe attacks involves the modification of DOCTYPE declaration in\u00a0 XML configuration files."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "No known existing exploitation.\u003cbr\u003e"
            }
          ],
          "value": "No known existing exploitation."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-212",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-212 Functionality Misuse"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "LOCAL",
            "baseScore": 2.4,
            "baseSeverity": "LOW",
            "privilegesRequired": "LOW",
            "providerUrgency": "CLEAR",
            "subAvailabilityImpact": "HIGH",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "HIGH",
            "userInteraction": "PASSIVE",
            "valueDensity": "DIFFUSE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:N/VA:L/SC:H/SI:H/SA:H/V:D/U:Clear",
            "version": "4.0",
            "vulnAvailabilityImpact": "LOW",
            "vulnConfidentialityImpact": "LOW",
            "vulnIntegrityImpact": "NONE",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-918",
              "description": "CWE-918 Server-Side Request Forgery (SSRF)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-01-03T13:40:41.135Z",
        "orgId": "455daabc-a392-441d-aa46-37d35189897c",
        "shortName": "NCSC.ch"
      },
      "references": [
        {
          "url": "https://logback.qos.ch/news.html#1.5.13"
        },
        {
          "url": "https://logback.qos.ch/news.html#1.3.15"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Update to logback version 1.5.13 or later. If you are using the 1.3.x \nseries, update to logback version 1.3.15 or later. Note that the 1.4.x \nseries remains vulnerable.\n\u003cbr\u003e"
            }
          ],
          "value": "Update to logback version 1.5.13 or later. If you are using the 1.3.x \nseries, update to logback version 1.3.15 or later. Note that the 1.4.x \nseries remains vulnerable."
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "SaxEventRecorder vulnerable to Server-Side Request Forgery (SSRF) attacks",
      "workarounds": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Update to logback version 1.5.13 or later. If you are using the 1.3.x \nseries, update to logback version 1.3.15 or later. Note that the 1.4.x \nseries remains vulnerable."
            }
          ],
          "value": "Update to logback version 1.5.13 or later. If you are using the 1.3.x \nseries, update to logback version 1.3.15 or later. Note that the 1.4.x \nseries remains vulnerable."
        }
      ],
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "455daabc-a392-441d-aa46-37d35189897c",
    "assignerShortName": "NCSC.ch",
    "cveId": "CVE-2024-12801",
    "datePublished": "2024-12-19T16:11:50.044Z",
    "dateReserved": "2024-12-19T16:09:59.761Z",
    "dateUpdated": "2025-01-03T13:40:41.135Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-12801",
      "date": "2026-06-02",
      "epss": "0.00064",
      "percentile": "0.1996"
    },
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Server-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12\\u00a0 on the Java platform, allows an attacker to \\nforge requests by compromising logback configuration files in XML.\\n\\n\\n\\nThe attacks involves the modification of DOCTYPE declaration in\\u00a0 XML configuration files.\"}, {\"lang\": \"es\", \"value\": \"Server-Side Request Forgery (SSRF) en SaxEventRecorder de QOS.CH logback versi\\u00f3n 1.5.12 en la plataforma Java permite a un atacante falsificar solicitudes comprometiendo los archivos de configuraci\\u00f3n de logback en XML. Los ataques implican la modificaci\\u00f3n de la declaraci\\u00f3n DOCTYPE en los archivos de configuraci\\u00f3n XML.\"}]",
      "id": "CVE-2024-12801",
      "lastModified": "2025-01-03T14:15:24.500",
      "metrics": "{\"cvssMetricV40\": [{\"source\": \"vulnerability@ncsc.ch\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"4.0\", \"vectorString\": \"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:N/VA:L/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:D/RE:X/U:Clear\", \"baseScore\": 2.4, \"baseSeverity\": \"LOW\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"PASSIVE\", \"vulnerableSystemConfidentiality\": \"LOW\", \"vulnerableSystemIntegrity\": \"NONE\", \"vulnerableSystemAvailability\": \"LOW\", \"subsequentSystemConfidentiality\": \"HIGH\", \"subsequentSystemIntegrity\": \"HIGH\", \"subsequentSystemAvailability\": \"HIGH\", \"exploitMaturity\": \"NOT_DEFINED\", \"confidentialityRequirements\": \"NOT_DEFINED\", \"integrityRequirements\": \"NOT_DEFINED\", \"availabilityRequirements\": \"NOT_DEFINED\", \"modifiedAttackVector\": \"NOT_DEFINED\", \"modifiedAttackComplexity\": \"NOT_DEFINED\", \"modifiedAttackRequirements\": \"NOT_DEFINED\", \"modifiedPrivilegesRequired\": \"NOT_DEFINED\", \"modifiedUserInteraction\": \"NOT_DEFINED\", \"modifiedVulnerableSystemConfidentiality\": \"NOT_DEFINED\", \"modifiedVulnerableSystemIntegrity\": \"NOT_DEFINED\", \"modifiedVulnerableSystemAvailability\": \"NOT_DEFINED\", \"modifiedSubsequentSystemConfidentiality\": \"NOT_DEFINED\", \"modifiedSubsequentSystemIntegrity\": \"NOT_DEFINED\", \"modifiedSubsequentSystemAvailability\": \"NOT_DEFINED\", \"safety\": \"NOT_DEFINED\", \"automatable\": \"NOT_DEFINED\", \"recovery\": \"NOT_DEFINED\", \"valueDensity\": \"DIFFUSE\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\", \"providerUrgency\": \"CLEAR\"}}]}",
      "published": "2024-12-19T17:15:08.930",
      "references": "[{\"url\": \"https://logback.qos.ch/news.html#1.3.15\", \"source\": \"vulnerability@ncsc.ch\"}, {\"url\": \"https://logback.qos.ch/news.html#1.5.13\", \"source\": \"vulnerability@ncsc.ch\"}]",
      "sourceIdentifier": "vulnerability@ncsc.ch",
      "vulnStatus": "Awaiting Analysis",
      "weaknesses": "[{\"source\": \"vulnerability@ncsc.ch\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-918\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-12801\",\"sourceIdentifier\":\"vulnerability@ncsc.ch\",\"published\":\"2024-12-19T17:15:08.930\",\"lastModified\":\"2025-01-03T14:15:24.500\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Server-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12\u00a0 on the Java platform, allows an attacker to \\nforge requests by compromising logback configuration files in XML.\\n\\n\\n\\nThe attacks involves the modification of DOCTYPE declaration in\u00a0 XML configuration files.\"},{\"lang\":\"es\",\"value\":\"Server-Side Request Forgery (SSRF) en SaxEventRecorder de QOS.CH logback versi\u00f3n 1.5.12 en la plataforma Java permite a un atacante falsificar solicitudes comprometiendo los archivos de configuraci\u00f3n de logback en XML. Los ataques implican la modificaci\u00f3n de la declaraci\u00f3n DOCTYPE en los archivos de configuraci\u00f3n XML.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"vulnerability@ncsc.ch\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:N/VA:L/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:D/RE:X/U:Clear\",\"baseScore\":2.4,\"baseSeverity\":\"LOW\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"PASSIVE\",\"vulnConfidentialityImpact\":\"LOW\",\"vulnIntegrityImpact\":\"NONE\",\"vulnAvailabilityImpact\":\"LOW\",\"subConfidentialityImpact\":\"HIGH\",\"subIntegrityImpact\":\"HIGH\",\"subAvailabilityImpact\":\"HIGH\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"DIFFUSE\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"CLEAR\"}}]},\"weaknesses\":[{\"source\":\"vulnerability@ncsc.ch\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-918\"}]}],\"references\":[{\"url\":\"https://logback.qos.ch/news.html#1.3.15\",\"source\":\"vulnerability@ncsc.ch\"},{\"url\":\"https://logback.qos.ch/news.html#1.5.13\",\"source\":\"vulnerability@ncsc.ch\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-12801\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-12-20T20:15:51.883590Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-12-20T20:16:02.318Z\"}}], \"cna\": {\"title\": \"SaxEventRecorder vulnerable to Server-Side Request Forgery (SSRF) attacks\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"7asecurity\"}], \"impacts\": [{\"capecId\": \"CAPEC-212\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-212 Functionality Misuse\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"NOT_DEFINED\", \"baseScore\": 2.4, \"Automatable\": \"NOT_DEFINED\", \"attackVector\": \"LOCAL\", \"baseSeverity\": \"LOW\", \"valueDensity\": \"DIFFUSE\", \"vectorString\": \"CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:N/VA:L/SC:H/SI:H/SA:H/V:D/U:Clear\", \"providerUrgency\": \"CLEAR\", \"userInteraction\": \"PASSIVE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"LOW\", \"subIntegrityImpact\": \"HIGH\", \"vulnIntegrityImpact\": \"NONE\", \"subAvailabilityImpact\": \"HIGH\", \"vulnAvailabilityImpact\": \"LOW\", \"subConfidentialityImpact\": \"HIGH\", \"vulnConfidentialityImpact\": \"LOW\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"QOS.CH Sarl\", \"modules\": [\"XML configuration component\"], \"product\": \"logback\", \"versions\": [{\"status\": \"affected\", \"version\": \"0.1\", \"versionType\": \"maven\", \"lessThanOrEqual\": \"1.3.14\"}, {\"status\": \"affected\", \"version\": \"1.4.0\", \"versionType\": \"maven\", \"lessThanOrEqual\": \"1.5.12\"}, {\"status\": \"unaffected\", \"version\": \"1.3.15\"}, {\"status\": \"unaffected\", \"version\": \"1.5.13\"}], \"platforms\": [\"Java\"], \"defaultStatus\": \"unaffected\"}], \"exploits\": [{\"lang\": \"en\", \"value\": \"No known existing exploitation.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"No known existing exploitation.\u003cbr\u003e\", \"base64\": false}]}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Update to logback version 1.5.13 or later. If you are using the 1.3.x \\nseries, update to logback version 1.3.15 or later. Note that the 1.4.x \\nseries remains vulnerable.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Update to logback version 1.5.13 or later. If you are using the 1.3.x \\nseries, update to logback version 1.3.15 or later. Note that the 1.4.x \\nseries remains vulnerable.\\n\u003cbr\u003e\", \"base64\": false}]}], \"references\": [{\"url\": \"https://logback.qos.ch/news.html#1.5.13\"}, {\"url\": \"https://logback.qos.ch/news.html#1.3.15\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Update to logback version 1.5.13 or later. If you are using the 1.3.x \\nseries, update to logback version 1.3.15 or later. Note that the 1.4.x \\nseries remains vulnerable.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Update to logback version 1.5.13 or later. If you are using the 1.3.x \\nseries, update to logback version 1.3.15 or later. Note that the 1.4.x \\nseries remains vulnerable.\", \"base64\": false}]}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Server-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12\\u00a0 on the Java platform, allows an attacker to \\nforge requests by compromising logback configuration files in XML.\\n\\n\\n\\nThe attacks involves the modification of DOCTYPE declaration in\\u00a0 XML configuration files.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cdiv\u003eServer-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12\u0026nbsp; on the Java platform, allows an attacker to \\nforge requests by compromising logback configuration files in XML.\\n\\n\u003cbr\u003e\u003cbr\u003eThe attacks involves the modification of DOCTYPE declaration in\u0026nbsp; XML configuration files.\u003cbr\u003e\u003c/div\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-918\", \"description\": \"CWE-918 Server-Side Request Forgery (SSRF)\"}]}], \"configurations\": [{\"lang\": \"en\", \"value\": \"The attacker needs to access and write to logback configuration files. Alternatively, the attacker needs to be able to force the use of a malicious logback configuration file at application start.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"The attacker needs to access and write to logback configuration files. Alternatively, the attacker needs to be able to force the use of a malicious logback configuration file at application start.\u003cbr\u003e\", \"base64\": false}]}], \"providerMetadata\": {\"orgId\": \"455daabc-a392-441d-aa46-37d35189897c\", \"shortName\": \"NCSC.ch\", \"dateUpdated\": \"2025-01-03T13:40:41.135Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-12801\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-03T13:40:41.135Z\", \"dateReserved\": \"2024-12-19T16:09:59.761Z\", \"assignerOrgId\": \"455daabc-a392-441d-aa46-37d35189897c\", \"datePublished\": \"2024-12-19T16:11:50.044Z\", \"assignerShortName\": \"NCSC.ch\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

GHSA-6V67-2WR5-GVF4

Vulnerability from github – Published: 2024-12-19 18:31 – Updated: 2025-01-03 19:06

Summary

QOS.CH logback-core Server-Side Request Forgery vulnerability

Details

Server-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 1.5.12 on the Java platform, allows an attacker to forge requests by compromising logback configuration files in XML.

The attacks involves the modification of DOCTYPE declaration in XML configuration files.

Severity

2.4 (Low)


                  
                    CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:N/VA:L/SC:H/SI:H/SA:H/V:D/U:Clear

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Maven",
        "name": "ch.qos.logback:logback-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "1.4.0"
            },
            {
              "fixed": "1.5.13"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Maven",
        "name": "ch.qos.logback:logback-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1.3.15"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2024-12801"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-918"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2024-12-19T22:22:44Z",
    "nvd_published_at": "2024-12-19T17:15:08Z",
    "severity": "LOW"
  },
  "details": "Server-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 1.5.12 on the Java platform, allows an attacker to forge requests by compromising logback configuration files in XML.\n \nThe attacks involves the modification of DOCTYPE declaration in\u00a0 XML configuration files.",
  "id": "GHSA-6v67-2wr5-gvf4",
  "modified": "2025-01-03T19:06:48Z",
  "published": "2024-12-19T18:31:37Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12801"
    },
    {
      "type": "WEB",
      "url": "https://github.com/qos-ch/logback/commit/5f05041cba4c4ac0a62748c5c527a2da48999f2d"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/qos-ch/logback"
    },
    {
      "type": "WEB",
      "url": "https://logback.qos.ch/news.html#1.3.15"
    },
    {
      "type": "WEB",
      "url": "https://logback.qos.ch/news.html#1.5.13"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:N/VA:L/SC:H/SI:H/SA:H/V:D/U:Clear",
      "type": "CVSS_V4"
    }
  ],
  "summary": "QOS.CH logback-core Server-Side Request Forgery vulnerability"
}

JVNDB-2026-010300

Vulnerability from jvndb - Published: 2026-04-08 12:11 - Updated:2026-04-08 12:11

Summary

Multiple Vulnerabilities in Hitachi Ops Center Viewpoint

Details

Hitachi Ops Center Viewpoint contain the following vulnerabilities: CVE-2014-3643, CVE-2023-3635, CVE-2023-6378, CVE-2023-6481, CVE-2023-35116, CVE-2024-12798, CVE-2024-12801, CVE-2024-47554

References

Type

URL

	CVE	https://www.cve.org/CVERecord?id=CVE-2014-3643
	CVE	https://www.cve.org/CVERecord?id=CVE-2023-35116
	CVE	https://www.cve.org/CVERecord?id=CVE-2023-3635
	CVE	https://www.cve.org/CVERecord?id=CVE-2023-6378
	CVE	https://www.cve.org/CVERecord?id=CVE-2023-6481
	CVE	https://www.cve.org/CVERecord?id=CVE-2024-12798
	CVE	https://www.cve.org/CVERecord?id=CVE-2024-12801
	CVE	https://www.cve.org/CVERecord?id=CVE-2024-47554

Impacted products

Vendor

Product

Hitachi, Ltd

Hitachi Ops Center Viewpoint

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2026/JVNDB-2026-010300.html",
  "dc:date": "2026-04-08T12:11+09:00",
  "dcterms:issued": "2026-04-08T12:11+09:00",
  "dcterms:modified": "2026-04-08T12:11+09:00",
  "description": "Hitachi Ops Center Viewpoint contain the following vulnerabilities:\r\n\r\nCVE-2014-3643, CVE-2023-3635, CVE-2023-6378, CVE-2023-6481, CVE-2023-35116, CVE-2024-12798, CVE-2024-12801, CVE-2024-47554",
  "link": "https://jvndb.jvn.jp/en/contents/2026/JVNDB-2026-010300.html",
  "sec:cpe": {
    "#text": "cpe:/a:hitachi:ops_center_viewpoint",
    "@product": "Hitachi Ops Center Viewpoint",
    "@vendor": "Hitachi, Ltd",
    "@version": "2.2"
  },
  "sec:identifier": "JVNDB-2026-010300",
  "sec:references": [
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2014-3643",
      "@id": "CVE-2014-3643",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2023-35116",
      "@id": "CVE-2023-35116",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2023-3635",
      "@id": "CVE-2023-3635",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2023-6378",
      "@id": "CVE-2023-6378",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2023-6481",
      "@id": "CVE-2023-6481",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2024-12798",
      "@id": "CVE-2024-12798",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2024-12801",
      "@id": "CVE-2024-12801",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2024-47554",
      "@id": "CVE-2024-47554",
      "@source": "CVE"
    }
  ],
  "title": "Multiple Vulnerabilities in Hitachi Ops Center Viewpoint"
}

OPENSUSE-SU-2025:14627-1

Vulnerability from csaf_opensuse - Published: 2025-01-09 00:00 - Updated: 2025-01-09 00:00

Summary

logback-1.2.11-4.1 on GA media

Severity

Moderate

Notes

Title of the patch: logback-1.2.11-4.1 on GA media

Description of the patch: These are all security issues fixed in the logback-1.2.11-4.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2025-14627

CVE-2024-12798

7.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:logback-1.2.11-4.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-1.2.11-4.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-1.2.11-4.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-1.2.11-4.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-access-1.2.11-4.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-access-1.2.11-4.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-access-1.2.11-4.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-access-1.2.11-4.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-examples-1.2.11-4.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-examples-1.2.11-4.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-examples-1.2.11-4.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-examples-1.2.11-4.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2024-12801

5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:logback-1.2.11-4.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-1.2.11-4.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-1.2.11-4.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-1.2.11-4.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-access-1.2.11-4.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-access-1.2.11-4.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-access-1.2.11-4.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-access-1.2.11-4.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-examples-1.2.11-4.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-examples-1.2.11-4.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-examples-1.2.11-4.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-examples-1.2.11-4.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

10 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://lists.opensuse.org/archives/list/security…	self
https://lists.opensuse.org/archives/list/security…	self
https://www.suse.com/security/cve/CVE-2024-12798/	self
https://www.suse.com/security/cve/CVE-2024-12801/	self
https://www.suse.com/security/cve/CVE-2024-12798	external
https://bugzilla.suse.com/1234742	external
https://www.suse.com/security/cve/CVE-2024-12801	external
https://bugzilla.suse.com/1234743	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "logback-1.2.11-4.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the logback-1.2.11-4.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2025-14627",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_14627-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2025:14627-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PPRBOLPRK5SRKJOONPEUDE3YZPUBLE23/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2025:14627-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PPRBOLPRK5SRKJOONPEUDE3YZPUBLE23/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-12798 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-12798/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-12801 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-12801/"
      }
    ],
    "title": "logback-1.2.11-4.1 on GA media",
    "tracking": {
      "current_release_date": "2025-01-09T00:00:00Z",
      "generator": {
        "date": "2025-01-09T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2025:14627-1",
      "initial_release_date": "2025-01-09T00:00:00Z",
      "revision_history": [
        {
          "date": "2025-01-09T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "logback-1.2.11-4.1.aarch64",
                "product": {
                  "name": "logback-1.2.11-4.1.aarch64",
                  "product_id": "logback-1.2.11-4.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "logback-access-1.2.11-4.1.aarch64",
                "product": {
                  "name": "logback-access-1.2.11-4.1.aarch64",
                  "product_id": "logback-access-1.2.11-4.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "logback-examples-1.2.11-4.1.aarch64",
                "product": {
                  "name": "logback-examples-1.2.11-4.1.aarch64",
                  "product_id": "logback-examples-1.2.11-4.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "logback-javadoc-1.2.11-4.1.aarch64",
                "product": {
                  "name": "logback-javadoc-1.2.11-4.1.aarch64",
                  "product_id": "logback-javadoc-1.2.11-4.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "logback-1.2.11-4.1.ppc64le",
                "product": {
                  "name": "logback-1.2.11-4.1.ppc64le",
                  "product_id": "logback-1.2.11-4.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "logback-access-1.2.11-4.1.ppc64le",
                "product": {
                  "name": "logback-access-1.2.11-4.1.ppc64le",
                  "product_id": "logback-access-1.2.11-4.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "logback-examples-1.2.11-4.1.ppc64le",
                "product": {
                  "name": "logback-examples-1.2.11-4.1.ppc64le",
                  "product_id": "logback-examples-1.2.11-4.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "logback-javadoc-1.2.11-4.1.ppc64le",
                "product": {
                  "name": "logback-javadoc-1.2.11-4.1.ppc64le",
                  "product_id": "logback-javadoc-1.2.11-4.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "logback-1.2.11-4.1.s390x",
                "product": {
                  "name": "logback-1.2.11-4.1.s390x",
                  "product_id": "logback-1.2.11-4.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "logback-access-1.2.11-4.1.s390x",
                "product": {
                  "name": "logback-access-1.2.11-4.1.s390x",
                  "product_id": "logback-access-1.2.11-4.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "logback-examples-1.2.11-4.1.s390x",
                "product": {
                  "name": "logback-examples-1.2.11-4.1.s390x",
                  "product_id": "logback-examples-1.2.11-4.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "logback-javadoc-1.2.11-4.1.s390x",
                "product": {
                  "name": "logback-javadoc-1.2.11-4.1.s390x",
                  "product_id": "logback-javadoc-1.2.11-4.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "logback-1.2.11-4.1.x86_64",
                "product": {
                  "name": "logback-1.2.11-4.1.x86_64",
                  "product_id": "logback-1.2.11-4.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "logback-access-1.2.11-4.1.x86_64",
                "product": {
                  "name": "logback-access-1.2.11-4.1.x86_64",
                  "product_id": "logback-access-1.2.11-4.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "logback-examples-1.2.11-4.1.x86_64",
                "product": {
                  "name": "logback-examples-1.2.11-4.1.x86_64",
                  "product_id": "logback-examples-1.2.11-4.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "logback-javadoc-1.2.11-4.1.x86_64",
                "product": {
                  "name": "logback-javadoc-1.2.11-4.1.x86_64",
                  "product_id": "logback-javadoc-1.2.11-4.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-1.2.11-4.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-1.2.11-4.1.aarch64"
        },
        "product_reference": "logback-1.2.11-4.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-1.2.11-4.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-1.2.11-4.1.ppc64le"
        },
        "product_reference": "logback-1.2.11-4.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-1.2.11-4.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-1.2.11-4.1.s390x"
        },
        "product_reference": "logback-1.2.11-4.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-1.2.11-4.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-1.2.11-4.1.x86_64"
        },
        "product_reference": "logback-1.2.11-4.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-access-1.2.11-4.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-access-1.2.11-4.1.aarch64"
        },
        "product_reference": "logback-access-1.2.11-4.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-access-1.2.11-4.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-access-1.2.11-4.1.ppc64le"
        },
        "product_reference": "logback-access-1.2.11-4.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-access-1.2.11-4.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-access-1.2.11-4.1.s390x"
        },
        "product_reference": "logback-access-1.2.11-4.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-access-1.2.11-4.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-access-1.2.11-4.1.x86_64"
        },
        "product_reference": "logback-access-1.2.11-4.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-examples-1.2.11-4.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.aarch64"
        },
        "product_reference": "logback-examples-1.2.11-4.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-examples-1.2.11-4.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.ppc64le"
        },
        "product_reference": "logback-examples-1.2.11-4.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-examples-1.2.11-4.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.s390x"
        },
        "product_reference": "logback-examples-1.2.11-4.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-examples-1.2.11-4.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.x86_64"
        },
        "product_reference": "logback-examples-1.2.11-4.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-javadoc-1.2.11-4.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.aarch64"
        },
        "product_reference": "logback-javadoc-1.2.11-4.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-javadoc-1.2.11-4.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.ppc64le"
        },
        "product_reference": "logback-javadoc-1.2.11-4.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-javadoc-1.2.11-4.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.s390x"
        },
        "product_reference": "logback-javadoc-1.2.11-4.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-javadoc-1.2.11-4.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.x86_64"
        },
        "product_reference": "logback-javadoc-1.2.11-4.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-12798",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-12798"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ACE vulnerability in JaninoEventEvaluator  by QOS.CH logback-core\n      upto including version 0.1 to 1.3.14 and  1.4.0 to 1.5.12 in Java applications allows\n      attacker to execute arbitrary code by compromising an existing\n      logback configuration file or by injecting an environment variable\n      before program execution.\n\n\n\n\n\nMalicious logback configuration files can allow the attacker to execute \narbitrary code using the JaninoEventEvaluator extension.\n\n\n\nA successful attack requires the user to have write access to a \nconfiguration file. Alternatively, the attacker could inject a malicious \nenvironment variable pointing to a malicious configuration file. In both \ncases, the attack requires existing privilege.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:logback-1.2.11-4.1.aarch64",
          "openSUSE Tumbleweed:logback-1.2.11-4.1.ppc64le",
          "openSUSE Tumbleweed:logback-1.2.11-4.1.s390x",
          "openSUSE Tumbleweed:logback-1.2.11-4.1.x86_64",
          "openSUSE Tumbleweed:logback-access-1.2.11-4.1.aarch64",
          "openSUSE Tumbleweed:logback-access-1.2.11-4.1.ppc64le",
          "openSUSE Tumbleweed:logback-access-1.2.11-4.1.s390x",
          "openSUSE Tumbleweed:logback-access-1.2.11-4.1.x86_64",
          "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.aarch64",
          "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.ppc64le",
          "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.s390x",
          "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.x86_64",
          "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.aarch64",
          "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.ppc64le",
          "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.s390x",
          "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-12798",
          "url": "https://www.suse.com/security/cve/CVE-2024-12798"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1234742 for CVE-2024-12798",
          "url": "https://bugzilla.suse.com/1234742"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:logback-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:logback-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-01-09T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-12798"
    },
    {
      "cve": "CVE-2024-12801",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-12801"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Server-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12   on the Java platform, allows an attacker to \nforge requests by compromising logback configuration files in XML.\n\n\n\nThe attacks involves the modification of DOCTYPE declaration in   XML configuration files.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:logback-1.2.11-4.1.aarch64",
          "openSUSE Tumbleweed:logback-1.2.11-4.1.ppc64le",
          "openSUSE Tumbleweed:logback-1.2.11-4.1.s390x",
          "openSUSE Tumbleweed:logback-1.2.11-4.1.x86_64",
          "openSUSE Tumbleweed:logback-access-1.2.11-4.1.aarch64",
          "openSUSE Tumbleweed:logback-access-1.2.11-4.1.ppc64le",
          "openSUSE Tumbleweed:logback-access-1.2.11-4.1.s390x",
          "openSUSE Tumbleweed:logback-access-1.2.11-4.1.x86_64",
          "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.aarch64",
          "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.ppc64le",
          "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.s390x",
          "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.x86_64",
          "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.aarch64",
          "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.ppc64le",
          "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.s390x",
          "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-12801",
          "url": "https://www.suse.com/security/cve/CVE-2024-12801"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1234743 for CVE-2024-12801",
          "url": "https://bugzilla.suse.com/1234743"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:logback-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:logback-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-access-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-examples-1.2.11-4.1.x86_64",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.aarch64",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.ppc64le",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.s390x",
            "openSUSE Tumbleweed:logback-javadoc-1.2.11-4.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-01-09T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-12801"
    }
  ]
}

SUSE-SU-2025:0072-1

Vulnerability from csaf_suse - Published: 2025-01-10 18:33 - Updated: 2025-01-10 18:33

Summary

Security update for logback

Severity

Important

Notes

Title of the patch: Security update for logback

Description of the patch: This update for logback fixes the following issues: - CVE-2024-12798: Fixed arbitrary code execution via JaninoEventEvaluator (bsc#1234742) - CVE-2024-12801: Fixed Server-Side Request Forgery in SaxEventRecorder (bsc#1234743)

Patchnames: SUSE-2025-72,openSUSE-SLE-15.6-2025-72

CVE-2024-12798

7.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.6:logback-1.2.11-150200.3.10.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:logback-access-1.2.11-150200.3.10.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:logback-examples-1.2.11-150200.3.10.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:logback-javadoc-1.2.11-150200.3.10.1.noarch	—	Vendor Fix

Threats

Impact important

CVE-2024-12801

5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 4 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.6:logback-1.2.11-150200.3.10.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:logback-access-1.2.11-150200.3.10.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:logback-examples-1.2.11-150200.3.10.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.6:logback-javadoc-1.2.11-150200.3.10.1.noarch	—	Vendor Fix

Threats

Impact moderate

References

12 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1234742	self
https://bugzilla.suse.com/1234743	self
https://www.suse.com/security/cve/CVE-2024-12798/	self
https://www.suse.com/security/cve/CVE-2024-12801/	self
https://www.suse.com/security/cve/CVE-2024-12798	external
https://bugzilla.suse.com/1234742	external
https://www.suse.com/security/cve/CVE-2024-12801	external
https://bugzilla.suse.com/1234743	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for logback",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for logback fixes the following issues:\n\n- CVE-2024-12798: Fixed arbitrary code execution via JaninoEventEvaluator (bsc#1234742)\n- CVE-2024-12801: Fixed Server-Side Request Forgery in SaxEventRecorder (bsc#1234743)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2025-72,openSUSE-SLE-15.6-2025-72",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0072-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2025:0072-1",
        "url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250072-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2025:0072-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020093.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1234742",
        "url": "https://bugzilla.suse.com/1234742"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1234743",
        "url": "https://bugzilla.suse.com/1234743"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-12798 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-12798/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-12801 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-12801/"
      }
    ],
    "title": "Security update for logback",
    "tracking": {
      "current_release_date": "2025-01-10T18:33:33Z",
      "generator": {
        "date": "2025-01-10T18:33:33Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2025:0072-1",
      "initial_release_date": "2025-01-10T18:33:33Z",
      "revision_history": [
        {
          "date": "2025-01-10T18:33:33Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "logback-1.2.11-150200.3.10.1.noarch",
                "product": {
                  "name": "logback-1.2.11-150200.3.10.1.noarch",
                  "product_id": "logback-1.2.11-150200.3.10.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "logback-access-1.2.11-150200.3.10.1.noarch",
                "product": {
                  "name": "logback-access-1.2.11-150200.3.10.1.noarch",
                  "product_id": "logback-access-1.2.11-150200.3.10.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "logback-examples-1.2.11-150200.3.10.1.noarch",
                "product": {
                  "name": "logback-examples-1.2.11-150200.3.10.1.noarch",
                  "product_id": "logback-examples-1.2.11-150200.3.10.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "logback-javadoc-1.2.11-150200.3.10.1.noarch",
                "product": {
                  "name": "logback-javadoc-1.2.11-150200.3.10.1.noarch",
                  "product_id": "logback-javadoc-1.2.11-150200.3.10.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.6",
                "product": {
                  "name": "openSUSE Leap 15.6",
                  "product_id": "openSUSE Leap 15.6",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-1.2.11-150200.3.10.1.noarch as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:logback-1.2.11-150200.3.10.1.noarch"
        },
        "product_reference": "logback-1.2.11-150200.3.10.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-access-1.2.11-150200.3.10.1.noarch as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:logback-access-1.2.11-150200.3.10.1.noarch"
        },
        "product_reference": "logback-access-1.2.11-150200.3.10.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-examples-1.2.11-150200.3.10.1.noarch as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:logback-examples-1.2.11-150200.3.10.1.noarch"
        },
        "product_reference": "logback-examples-1.2.11-150200.3.10.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "logback-javadoc-1.2.11-150200.3.10.1.noarch as component of openSUSE Leap 15.6",
          "product_id": "openSUSE Leap 15.6:logback-javadoc-1.2.11-150200.3.10.1.noarch"
        },
        "product_reference": "logback-javadoc-1.2.11-150200.3.10.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.6"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-12798",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-12798"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ACE vulnerability in JaninoEventEvaluator  by QOS.CH logback-core\n      upto including version 0.1 to 1.3.14 and  1.4.0 to 1.5.12 in Java applications allows\n      attacker to execute arbitrary code by compromising an existing\n      logback configuration file or by injecting an environment variable\n      before program execution.\n\n\n\n\n\nMalicious logback configuration files can allow the attacker to execute \narbitrary code using the JaninoEventEvaluator extension.\n\n\n\nA successful attack requires the user to have write access to a \nconfiguration file. Alternatively, the attacker could inject a malicious \nenvironment variable pointing to a malicious configuration file. In both \ncases, the attack requires existing privilege.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.6:logback-1.2.11-150200.3.10.1.noarch",
          "openSUSE Leap 15.6:logback-access-1.2.11-150200.3.10.1.noarch",
          "openSUSE Leap 15.6:logback-examples-1.2.11-150200.3.10.1.noarch",
          "openSUSE Leap 15.6:logback-javadoc-1.2.11-150200.3.10.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-12798",
          "url": "https://www.suse.com/security/cve/CVE-2024-12798"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1234742 for CVE-2024-12798",
          "url": "https://bugzilla.suse.com/1234742"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.6:logback-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-access-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-examples-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-javadoc-1.2.11-150200.3.10.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.6:logback-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-access-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-examples-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-javadoc-1.2.11-150200.3.10.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-01-10T18:33:33Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-12798"
    },
    {
      "cve": "CVE-2024-12801",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-12801"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Server-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12   on the Java platform, allows an attacker to \nforge requests by compromising logback configuration files in XML.\n\n\n\nThe attacks involves the modification of DOCTYPE declaration in   XML configuration files.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.6:logback-1.2.11-150200.3.10.1.noarch",
          "openSUSE Leap 15.6:logback-access-1.2.11-150200.3.10.1.noarch",
          "openSUSE Leap 15.6:logback-examples-1.2.11-150200.3.10.1.noarch",
          "openSUSE Leap 15.6:logback-javadoc-1.2.11-150200.3.10.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-12801",
          "url": "https://www.suse.com/security/cve/CVE-2024-12801"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1234743 for CVE-2024-12801",
          "url": "https://bugzilla.suse.com/1234743"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.6:logback-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-access-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-examples-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-javadoc-1.2.11-150200.3.10.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.6:logback-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-access-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-examples-1.2.11-150200.3.10.1.noarch",
            "openSUSE Leap 15.6:logback-javadoc-1.2.11-150200.3.10.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-01-10T18:33:33Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-12801"
    }
  ]
}

WID-SEC-W-2025-0503

Vulnerability from csaf_certbund - Published: 2025-03-06 23:00 - Updated: 2025-11-17 23:00

Summary

Apache Cassandra: Schwachstelle ermöglicht Codeausführung

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Cassandra ist ein einfaches, verteiltes Datenbankverwaltungssystem für sehr große strukturierte Datenbanken.

Angriff: Ein lokaler Angreifer kann eine Schwachstelle in Apache Cassandra ausnutzen, um beliebigen Programmcode auszuführen.

Betroffene Betriebssysteme: - Sonstiges

CVE-2024-12801

Affected products

Known affected 6 products

Product	Identifier	Version
Apache Cassandra <1.5.14 Apache / Cassandra		<1.5.14
NetApp ActiveIQ Unified Manager NetApp	`cpe:/a:netapp:active_iq_unified_manager:-`	—
SAS Institute Base SAS <9.4M9 (TS1M9) SAS Institute / Base SAS		<9.4M9 (TS1M9)
Apache Cassandra <1.3.15 Apache / Cassandra		<1.3.15
SolarWinds Platform <2025.4.1 SolarWinds / Platform		<2025.4.1
Hitachi Ops Center <11.0.4-00 Hitachi / Ops Center		<11.0.4-00

References

8 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://issues.apache.org/jira/browse/CASSANDRA-20412	external
https://nvd.nist.gov/vuln/detail/CVE-2024-12801	external
https://www.hitachi.com/products/it/software/secu…	external
https://security.netapp.com/advisory/NTAP-20250704-0001	external
https://support.sas.com/en/security-bulletins/sas…	external
https://documentation.solarwinds.com/en/success_c…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Cassandra ist ein einfaches, verteiltes Datenbankverwaltungssystem f\u00fcr sehr gro\u00dfe strukturierte Datenbanken.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann eine Schwachstelle in Apache Cassandra ausnutzen, um beliebigen Programmcode auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-0503 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0503.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-0503 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0503"
      },
      {
        "category": "external",
        "summary": "Apache Cassandra Vulnerability Report vom 2025-03-06",
        "url": "https://issues.apache.org/jira/browse/CASSANDRA-20412"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2025-03-06",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12801"
      },
      {
        "category": "external",
        "summary": "Hitachi Vulnerability Information HITACHI-SEC-2025-113 vom 2025-05-15",
        "url": "https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2025-113/index.html"
      },
      {
        "category": "external",
        "summary": "NetApp Security Advisory NTAP-20250704-0001 vom 2025-07-04",
        "url": "https://security.netapp.com/advisory/NTAP-20250704-0001"
      },
      {
        "category": "external",
        "summary": "SAS Security Update vom 2025-10-02",
        "url": "https://support.sas.com/en/security-bulletins/sas-security-update-for-sas-94m9-ts1m9.html"
      },
      {
        "category": "external",
        "summary": "SolarWinds Platform 2025.4.1 release notes vom 2025-11-18",
        "url": "https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2025-4-1_release_notes.htm"
      }
    ],
    "source_lang": "en-US",
    "title": "Apache Cassandra: Schwachstelle erm\u00f6glicht Codeausf\u00fchrung",
    "tracking": {
      "current_release_date": "2025-11-17T23:00:00.000+00:00",
      "generator": {
        "date": "2025-11-18T08:12:25.713+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2025-0503",
      "initial_release_date": "2025-03-06T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-03-06T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-05-14T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von HITACHI aufgenommen"
        },
        {
          "date": "2025-07-06T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von NetApp aufgenommen"
        },
        {
          "date": "2025-10-05T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates aufgenommen"
        },
        {
          "date": "2025-11-17T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates aufgenommen"
        }
      ],
      "status": "final",
      "version": "5"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c1.3.15",
                "product": {
                  "name": "Apache Cassandra \u003c1.3.15",
                  "product_id": "T041659"
                }
              },
              {
                "category": "product_version",
                "name": "1.3.15",
                "product": {
                  "name": "Apache Cassandra 1.3.15",
                  "product_id": "T041659-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:apache:cassandra:1.3.15"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c1.5.14",
                "product": {
                  "name": "Apache Cassandra \u003c1.5.14",
                  "product_id": "T041660"
                }
              },
              {
                "category": "product_version",
                "name": "1.5.14",
                "product": {
                  "name": "Apache Cassandra 1.5.14",
                  "product_id": "T041660-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:apache:cassandra:1.5.14"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Cassandra"
          }
        ],
        "category": "vendor",
        "name": "Apache"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c11.0.4-00",
                "product": {
                  "name": "Hitachi Ops Center \u003c11.0.4-00",
                  "product_id": "T043089"
                }
              },
              {
                "category": "product_version",
                "name": "11.0.4-00",
                "product": {
                  "name": "Hitachi Ops Center 11.0.4-00",
                  "product_id": "T043089-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hitachi:ops_center:11.0.4-00"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Ops Center"
          }
        ],
        "category": "vendor",
        "name": "Hitachi"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "NetApp ActiveIQ Unified Manager",
            "product": {
              "name": "NetApp ActiveIQ Unified Manager",
              "product_id": "T034126",
              "product_identification_helper": {
                "cpe": "cpe:/a:netapp:active_iq_unified_manager:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "NetApp"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c9.4M9 (TS1M9)",
                "product": {
                  "name": "SAS Institute Base SAS \u003c9.4M9 (TS1M9)",
                  "product_id": "T047382"
                }
              },
              {
                "category": "product_version",
                "name": "9.4M9 (TS1M9)",
                "product": {
                  "name": "SAS Institute Base SAS 9.4M9 (TS1M9)",
                  "product_id": "T047382-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:sas:base_sas:9.4m9_%28ts1m9%29"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Base SAS"
          }
        ],
        "category": "vendor",
        "name": "SAS Institute"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c2025.4.1",
                "product": {
                  "name": "SolarWinds Platform \u003c2025.4.1",
                  "product_id": "T048650"
                }
              },
              {
                "category": "product_version",
                "name": "2025.4.1",
                "product": {
                  "name": "SolarWinds Platform 2025.4.1",
                  "product_id": "T048650-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:solarwinds:orion_platform:2025.4.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Platform"
          }
        ],
        "category": "vendor",
        "name": "SolarWinds"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-12801",
      "product_status": {
        "known_affected": [
          "T041660",
          "T034126",
          "T047382",
          "T041659",
          "T048650",
          "T043089"
        ]
      },
      "release_date": "2025-03-06T23:00:00.000+00:00",
      "title": "CVE-2024-12801"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-12801 (GCVE-0-2024-12801)

GHSA-6V67-2WR5-GVF4

JVNDB-2026-010300

OPENSUSE-SU-2025:14627-1

SUSE-SU-2025:0072-1

WID-SEC-W-2025-0503

Tags

Sightings

Nomenclature