Lucene search

Quarkus does not properly sanitize artifacts created from its use of the Gradle plugin, allowing certain build system information to remain

🗓️ 15 Nov 2023 15:21:30Reported by GoogleType

osv🔗 osv.dev👁 17 Views

Flaw in Quarkus Gradle plugin

Reporter	Title	Published	Views	Family All 8
Prion	Design/Logic Flaw	15 Nov 202314:15	–	prion
OSV	CVE-2023-5720	15 Nov 202314:15	–	osv
NVD	CVE-2023-5720	15 Nov 202314:15	–	nvd
Github Security Blog	Quarkus does not properly sanitize artifacts created from its use of the Gradle plugin, allowing certain build system information to remain	15 Nov 202315:30	–	github
Veracode	Sensitive Information Disclosure	16 Nov 202310:06	–	veracode
RedhatCVE	CVE-2023-5720	9 Nov 202301:58	–	redhatcve
CVE	CVE-2023-5720	15 Nov 202314:15	–	cve
Cvelist	CVE-2023-5720 Quarkus: build env information disclosure via gradle plugin	15 Nov 202313:57	–	cvelist

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-5720
access	www.access.redhat.com/security/cve/CVE-2023-5720
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
github	www.github.com/quarkusio/quarkus

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Nov 2023 15:30Current

6.4Medium risk

Vulners AI Score6.4

CVSS37.5

EPSS0.00143