CVE-2025-20293

creationtimestamp| type| source ---|---|--- 2025-09-26 08:27:34+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuuksia-cisco-ios-ja-ios-xe-laitteissa...

Kenwood DMX958XR Command Injection Vulnerability (CNVD-2025-20293)

The Kenwood DMX958XR is an in-car infotainment system from Kenwood. The Kenwood DMX958XR suffers from a command injection vulnerability that can be exploited by an attacker to execute code in a root context...

CVE-2022-20293

In LauncherApps, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

Linux Distros Unpatched Vulnerability : CVE-2021-20293

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A reflected Cross-Site Scripting XSS flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final, where it did not properly handle URL encoding whe...

RHEL 8 : resteasy (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - RESTEasy: PathParam in RESTEasy can lead to a reflected XSS attack CVE-2021-20293 Note that Nessus has not tested f...

CVE-2019-20293

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none...

CVE-2022-20293

creationtimestamp| type| source ---|---|--- 2022-08-12 18:43:37+00:00| seen| https://t.me/cibsecurity/48067...

CVE-2022-20293

In LauncherApps, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

CVE-2022-20293

CVE-2022-20293 affects Android 13 LauncherApps: a side-channel disclosure lets a local attacker determine whether an app is installed without query permissions, enabling local information disclosure with no execution privileges and no user interaction. Affected component: LauncherApps; root cause...

Moderate: Red Hat Security Advisory: Red Hat Integration - Service Registry release and security update [2.0.2.GA]

An update to the images for Red Hat Integration Service Registry is now available from the Red Hat Container Catalog. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact o...

com.wavefront:proxy (>=11.0 <=11.0-RC3), com.wavefront:proxy-test (>=999.0 <=9999.0-RC2) +1 more potentially affected by CVE-2021-20293 via org.jboss.resteasy:resteasy-bom (>=3.13.0.Final <=3.13.2.Final)

org.jboss.resteasy:resteasy-bom MAVEN version =3.13.0.Final, =11.0, =999.0, =999.0, =999.7 Source cves: CVE-2021-20293 Source advisory: OSV:GHSA-5H26-C766-G93V...

CVE-2021-20293

CVE-2021-20293 affects RESTEasy (all versions up to 4.6.0.Final). The flaw is a reflected XSS caused by improper handling of URL encoding when using @javax.ws.rs.PathParam without an accompanying @Produces MediaType. Exploitation could lead to script execution in a victim’s browser, impacting dat...

CVE-2021-20293

Removed by vendor...

CVE-2021-20293

A reflected Cross-Site Scripting XSS flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final, where it did not properly handle URL encoding when calling @javax.ws.rs.PathParam without any @Produces MediaType. This flaw allows an attacker to launch a reflected XSS attack. The...

CVE-2019-20293

...

CVE-2019-20293

CVE-2019-20293 entry is rejected/not used; it does not represent an active vulnerability.