vulnerability
SUSE: CVE-2026-1225: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:L/AC:M/Au:M/C:P/I:P/A:P) | Feb 3, 2026 | Feb 3, 2026 | Feb 4, 2026 |
Severity
4
CVSS
(AV:L/AC:M/Au:M/C:P/I:P/A:P)
Published
Feb 3, 2026
Added
Feb 3, 2026
Modified
Feb 4, 2026
Description
ACE vulnerability in configuration file processing by QOS.CH logback-core up to and including version 1.5.24 in Java applications, allows an attacker to instantiate classes already present on the class path by compromising an existing logback configuration file.
Solutions
suse-upgrade-logbacksuse-upgrade-logback-accesssuse-upgrade-logback-examplessuse-upgrade-logback-javadoc
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.