{"id":"ROOT-APP-MAVEN-CVE-2023-6378","summary":"CVE-2023-6378 in io.root.ch.qos.logback:logback-classic - Patched by Root","details":"Root has patched CVE-2023-6378 in the io.root.ch.qos.logback:logback-classic package for Root:Maven. Multiple fixed versions available.","modified":"2026-05-20T13:03:29.417320123Z","published":"2026-05-20T10:52:35Z","upstream":["CVE-2023-6378"],"database_specific":{"source":"Root","distro":"maven","distro_version":"","severity":"HIGH"},"affected":[{"package":{"name":"io.root.ch.qos.logback:logback-classic","ecosystem":"Root:Maven"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.4.11-root.io.1"},{"fixed":"1.4.11-root.io.2"},{"fixed":"1.1.3-root.io.1"},{"fixed":"1.4.11-root.io.4"}]}],"database_specific":{"source":"https://api.root.io/external/osv/ROOT-APP-MAVEN-CVE-2023-6378.json","upstream_version":"1.4.11","root_patched":true,"total_fixed_versions":4,"root_patch_version":"root.io.4","all_fixed_versions":["1.4.11-root.io.1","1.4.11-root.io.2","1.1.3-root.io.1","1.4.11-root.io.4"]}},{"package":{"name":"io.root.ch.qos.logback:logback-core","ecosystem":"Root:Maven"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.1.3-root.io.1"},{"fixed":"1.4.11-root.io.4"}]}],"database_specific":{"source":"https://api.root.io/external/osv/ROOT-APP-MAVEN-CVE-2023-6378.json","all_fixed_versions":["1.1.3-root.io.1","1.4.11-root.io.4"],"root_patched":true,"root_patch_version":"root.io.4","upstream_version":"1.4.11","total_fixed_versions":2}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H"}]}