Lucene search
RedhatCVELIST:CVE-2020-1729HistoryMay 28, 2021 - 1:09 p.m.
CVE-2020-1729
2021-05-2813:09:43
CWE-863
redhat
www.cve.org
A flaw was found in SmallRye’s API through version 1.6.1. The API can allow other code running within the application server to potentially obtain the ClassLoader, bypassing any permissions checks that should have been applied. The largest threat from this vulnerability is a threat to data confidentiality. This is fixed in SmallRye 1.6.2
CNA Affected
[
{
"product": "SmallRye",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "SmallRye 1.6.1"
}
]
}
]Related
osv
osv
CVE-2020-1729
2021-05-28 14:15:07
Permissions bypass in SmallRye
2022-03-18 17:55:47
nvd
nvd
CVE-2020-1729
2021-05-28 14:15:07
f5
f5
K19384335 : SmallRye's API vulnerability CVE-2020-1729
2020-04-27 00:00:00
cve
cve
CVE-2020-1729
2021-05-28 14:15:07
github
github
Permissions bypass in SmallRye
2022-03-18 17:55:47
redhatcve
redhatcve
CVE-2020-1729
2020-02-13 07:14:19
veracode
veracode
Authorization Bypass
2020-03-03 03:17:26
prion
prion
Code injection
2021-05-28 14:15:00
redhat
redhat
nessus
nessus