1. Critical CVE-2017-5929 Exposes Logback-Classic 0.9.29 to Serialization Attacks
A critical, years-old vulnerability with a maximum CVSS score of 9.8 has been flagged in a specific, outdated version of a foundational Java logging library. The flaw, CVE-2017-5929, resides in `logback-classic-0.9.29.jar`, a version of the Logback library released before the critical fix in version 1.2.0. This is not ...