CVE-2024-12801 LOW

CVE-2024-12801: SaxEventRecorder vulnerable to Server-Side Request Forgery (SSRF) attacks

Vendor Qos.ch Sarl

Product logback

Weakness CWE-918 · SSRF

Published December 19, 2024

Last update January 3, 2025

View on NVD All CVEs

CVSS base score

2.4/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction —

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:L/VI:N/VA:L/SC:H/SI:H/SA:H/V:D/U:Clear

What the vulnerability does

01Description

Server-Side Request Forgery (SSRF) in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12 on the Java platform, allows an attacker to forge requests by compromising logback configuration files in XML. The attacks involves the modification of DOCTYPE declaration in XML configuration files.

Key dates

02Disclosure timeline

December 19, 2024 CVE published

January 3, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-12801

Related vulnerabilities

Identifiers

CVE CVE-2024-12801

CWE CWE-918

CVSS 2.4 / LOW

Affected versions

Vendor Qos.ch Sarl

Product logback

Affected ≥ 0.1 and ≤ 1.3.14

Vendor Qos.ch Sarl

Product logback

Affected ≥ 1.4.0 and ≤ 1.5.12

CVE-2024-12801: SaxEventRecorder vulnerable to Server-Side Request Forgery (SSRF) attacks

01Description

02Disclosure timeline

03References

04Related CVE