CNNVD-202510-244 Information

Oct 01, 2025 cve

CNNVD ID

CNNVD-202510-244

CVE-2025-11226

CNNVD Published: 2025-10-01

Description (Chinese)

Quality Open Software Logback是瑞士Quality Open Software公司的一个 Java 应用程序的日志记录框架。 Quality Open Software Logback 1.5.18及之前版本存在安全漏洞，该漏洞源于条件配置文件处理不当，可能导致执行任意代码。

Description (English)

Quality Open Software Logback is a log log recording framework for a Java application from Quality Open Software, Switzerland. There is a security loophole in Quality Open Software Logback 1.5.18 and earlier versions, which stems from the mishandling of the condition profile, which could lead to the implementation of any code.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Quality Open Software

Published

2025-10-01

Last Modified

2026-02-24

References

https://logback.qos.ch/news.html#1.5.19

Patch

https://logback.qos.ch/

Share on: