In logback version 1.2.7 and prior versions, an attacker with the required privileges to edit configurations files could craft a malicious configuration allowing to execute arbitrary code loaded from LDAP servers.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qos logback 1.3.0 |
||
qos logback |
||
redhat satellite 6.0 |
||
netapp snap creator framework - |
||
netapp service level manager - |
||
netapp cloud manager - |
||
siemens sinec nms |