Logback-core — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in Logback-core, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-1225	Malicious logback.xml configuration file allows instantiation of arbitrary classes CWE-20	7.5^AI	High^AI	2026-01-22
CVE-2025-11226	Conditional processing of logback.xml configuration file, in conjuction with Spring Framework and Janino CWE-20	7.5^AI	High^AI	2025-10-01
CVE-2024-12798	JaninoEventEvaluator vulnerability CWE-917	8.4	-	2024-12-19

All 3 known CVE vulnerabilities affecting Logback-core with full Chinese analysis, references, and POCs where available.