Logback team

1 exploit Active since Mar 2017
CVE-2017-5929 NOMISEC CRITICAL WRITEUP
Logback < 1.2.0 - Deserialization of Untrusted Data in SocketServer and ServerSocketReceiver
QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components.
CVSS 9.8