CVE-2023-6481 - OpenCVE

A serialization vulnerability in logback receiver component part of logback version 1.4.13, 1.3.13 and 1.2.12 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Qos	Logback

Configuration 1 [-]

OR	cpe:2.3:a:qos:logback:1.2.12:::::::*
	cpe:2.3:a:qos:logback:1.3.13:::::::*
	cpe:2.3:a:qos:logback:1.4.13:::::::*

References

Link	Resource
https://logback.qos.ch/news.html#1.3.12	Release Notes
https://logback.qos.ch/news.html#1.3.14	Release Notes

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: NCSC.ch

Published: 2023-12-04T08:35:44.396Z

Updated: 2023-12-04T08:35:44.396Z

Reserved: 2023-12-04T08:34:29.742Z

Link: CVE-2023-6481

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-12-04T09:15:37.250

Modified: 2023-12-07T19:57:46.020

Link: CVE-2023-6481

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-noinfo

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-6481", "assignerOrgId": "455daabc-a392-441d-aa46-37d35189897c", "state": "PUBLISHED", "assignerShortName": "NCSC.ch", "dateReserved": "2023-12-04T08:34:29.742Z", "datePublished": "2023-12-04T08:35:44.396Z", "dateUpdated": "2023-12-04T08:35:44.396Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["logback receiver"], "platforms": ["Windows", "Linux", "MacOS"], "product": "logback", "repo": "https://github.com/qos-ch/logback", "vendor": "QOS.CH Sarl", "versions": [{"status": "unaffected", "version": "1.4.14"}, {"status": "unaffected", "version": "1.3.14"}, {"status": "unaffected", "version": "1.2.13"}]}], "configurations": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n<pre>The attacker needs to be able to feed poisoned data to a logback receiver. Thus, the attacker needs to connect to a logback receiver which can be a significant hurdle in itself.<br>Only environments where logback receiver is deployed are vulnerable. <br></pre>\n\n"}], "value": "The attacker needs to be able to feed poisoned data to a logback receiver. Thus, the attacker needs to connect to a logback receiver which can be a significant hurdle in itself.\nOnly environments where logback receiver is deployed are vulnerable. \n\n\n\n\n"}], "credits": [{"lang": "en", "type": "reporter", "user": "00000000-0000-4000-9000-000000000000", "value": "Yakov Shafranovich, Amazon Web Services"}, {"lang": "en", "type": "reporter", "user": "00000000-0000-4000-9000-000000000000", "value": "Camilo Aparecido Ferri Moreira"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\nA serialization vulnerability in logback receiver component part of \nlogback version 1.4.13, 1.3.13 and 1.2.12 allows an attacker to mount a Denial-Of-Service \nattack by sending poisoned data.\n\n"}], "value": "A serialization vulnerability in logback receiver component part of \nlogback version 1.4.13,\u00a01.3.13 and\u00a01.2.12 allows an attacker to mount a Denial-Of-Service \nattack by sending poisoned data.\n\n"}], "impacts": [{"descriptions": [{"lang": "en", "value": "Excessive CPU or memory usage on the host where a logback receiver component is deployed"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"description": "Denial-of-service using poisoned data", "lang": "en"}]}], "providerMetadata": {"orgId": "455daabc-a392-441d-aa46-37d35189897c", "shortName": "NCSC.ch", "dateUpdated": "2023-12-04T08:35:44.396Z"}, "references": [{"url": "https://logback.qos.ch/news.html#1.3.12"}, {"url": "https://logback.qos.ch/news.html#1.3.14"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Only environments where logback receiver component is deployed may be vulnerable.\n In case a logback receiver is deployed, restricting connections to \ntrustworthy clients or upgrading to logback version 1.4.14, 1.3.14, 1.2.13 or later will remedy the vulnerability.<br><br>If you do not need to deploy logback-receiver, then please verify that you do not have any <receiver></receiver> entries in your configuration files.<br>"}], "value": "Only environments where logback receiver component is deployed may be vulnerable.\n In case a logback receiver is deployed, restricting connections to \ntrustworthy clients or upgrading to logback version 1.4.14, 1.3.14, 1.2.13 or later will remedy the vulnerability.\n\nIf you do not need to deploy logback-receiver, then please verify that you do not have any <receiver></receiver> entries in your configuration files.\n"}], "source": {"discovery": "UNKNOWN"}, "title": "Logback \"receiver\" DOS vulnerability CVE-2023-6378 incomplete fix", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Logback versions 1.2.13 and later, 1.3.14 \nand later  or 1.4.14 \nand later\n\nprovides fixes. However, please note that these fixes are only effective when deployed under Java 9 or later.<br>"}], "value": "Logback versions 1.2.13 and later, 1.3.14 \nand later\u00a0 or 1.4.14 \nand later\n\nprovides fixes. However, please note that these fixes are only effective when deployed under Java 9 or later.\n"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:qos:logback:1.2.12:*:*:*:*:*:*:*", "matchCriteriaId": "096CE0E0-9128-42CE-9047-DC0E8575920B", "vulnerable": true}, {"criteria": "cpe:2.3:a:qos:logback:1.3.13:*:*:*:*:*:*:*", "matchCriteriaId": "E9E58AB3-AC12-4C3F-A8A3-A49512F276E9", "vulnerable": true}, {"criteria": "cpe:2.3:a:qos:logback:1.4.13:*:*:*:*:*:*:*", "matchCriteriaId": "0F59BD62-E471-4F2E-A21C-DF6B5950720C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A serialization vulnerability in logback receiver component part of \nlogback version 1.4.13,\u00a01.3.13 and\u00a01.2.12 allows an attacker to mount a Denial-Of-Service \nattack by sending poisoned data.\n\n"}, {"lang": "es", "value": "Una vulnerabilidad de serializaci\u00f3n en el componente Logback Receiver. Las versiones 1.4.13, 1.3.13 y 1.2.12 de Logback permite a un atacante montar un ataque de denegaci\u00f3n de servicio enviando datos envenenados."}], "id": "CVE-2023-6481", "lastModified": "2023-12-07T19:57:46.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 4.0, "source": "vulnerability@ncsc.ch", "type": "Secondary"}]}, "published": "2023-12-04T09:15:37.250", "references": [{"source": "vulnerability@ncsc.ch", "tags": ["Release Notes"], "url": "https://logback.qos.ch/news.html#1.3.12"}, {"source": "vulnerability@ncsc.ch", "tags": ["Release Notes"], "url": "https://logback.qos.ch/news.html#1.3.14"}], "sourceIdentifier": "vulnerability@ncsc.ch", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}