Lucene search
K

713 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2021-20289

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final. The endpoint class and method names are returned as part of the exception response...

5.3CVSS6.6AI score0.01439EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2016-6346

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RESTEasy enables GZIPInterceptor, which allows remote attackers to cause a denial of service via unspecified vectors. CVE-2016-6346 Note that Nessus relies on t...

7.5CVSS7.4AI score0.04913EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2021-20293

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A reflected Cross-Site Scripting XSS flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final, where it did not properly handle URL encoding whe...

6.1CVSS6.5AI score0.00856EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/03/03 1:23 p.m.5 views

io.quarkus:quarkus-resteasy: Memory Leak in Quarkus RESTEasy Classic When Client Requests Timeout

A flaw was found in the quarkus-resteasy extension, which causes memory leaks when client requests with low timeouts are made. If a client request times out, a buffer is not released correctly, leading to increased memory usage and eventual application crash due to OutOfMemoryError...

7.5CVSS5.9AI score0.00759EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/02/27 3:15 p.m.4 views

io.quarkus:quarkus-resteasy: Memory Leak in Quarkus RESTEasy Classic When Client Requests Timeout

A flaw was found in the quarkus-resteasy extension, which causes memory leaks when client requests with low timeouts are made. If a client request times out, a buffer is not released correctly, leading to increased memory usage and eventual application crash due to OutOfMemoryError...

7.5CVSS5.9AI score0.00759EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/02/27 1:16 p.m.4 views

io.quarkus:quarkus-resteasy: Memory Leak in Quarkus RESTEasy Classic When Client Requests Timeout

A flaw was found in the quarkus-resteasy extension, which causes memory leaks when client requests with low timeouts are made. If a client request times out, a buffer is not released correctly, leading to increased memory usage and eventual application crash due to OutOfMemoryError...

7.5CVSS5.9AI score0.00759EPSS
Exploits0References6
vulnersOsv
vulnersOsv
added 2025/02/26 6:30 p.m.17 views

ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +1534 more potentially affected by CVE-2025-1634 via io.quarkus:quarkus-resteasy (>=0.11.0 <=3.8.6)

io.quarkus:quarkus-resteasy MAVEN version =0.11.0, =0.1.0, =0.1.0, =0.7.20, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.1.5, =0.1.5, =1.0.0-alpha1, =1.6.9, =1.6.9, =1.6.18 and more Source cves: CVE-2025-1634ht...

7.5CVSS7.1AI score0.00759EPSS
Exploits0
OSV
OSV
added 2025/02/26 6:30 p.m.2 views

GHSA-4FWR-MH5Q-HCHH io.quarkus:quarkus-resteasy: Memory Leak in Quarkus RESTEasy Classic When Client Requests Timeout

A flaw was found in the quarkus-resteasy extension, which causes memory leaks when client requests with low timeouts are made. If a client request times out, a buffer is not released correctly, leading to increased memory usage and eventual application crash due to OutOfMemoryError...

7.5CVSS6AI score0.00759EPSS
Exploits0References18
Github Security Blog
Github Security Blog
added 2025/02/26 6:30 p.m.25 views

io.quarkus:quarkus-resteasy: Memory Leak in Quarkus RESTEasy Classic When Client Requests Timeout

A flaw was found in the quarkus-resteasy extension, which causes memory leaks when client requests with low timeouts are made. If a client request times out, a buffer is not released correctly, leading to increased memory usage and eventual application crash due to OutOfMemoryError...

7.5CVSS7.6AI score0.00759EPSS
Exploits0References18Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/02/26 5:15 p.m.6 views

CVE-2025-1634

A flaw was found in the quarkus-resteasy extension, which causes memory leaks when client requests with low timeouts are made. If a client request times out, a buffer is not released correctly, leading to increased memory usage and eventual application crash due to OutOfMemoryError...

7.5CVSS7.3AI score0.00759EPSS
Exploits0References11
NVD
NVD
added 2025/02/26 5:15 p.m.13 views

CVE-2025-1634

A flaw was found in the quarkus-resteasy extension, which causes memory leaks when client requests with low timeouts are made. If a client request times out, a buffer is not released correctly, leading to increased memory usage and eventual application crash due to OutOfMemoryError...

7.5CVSS0.00759EPSS
Exploits0References10
CVE
CVE
added 2025/02/26 4:56 p.m.280 views

CVE-2025-1634

CVE-2025-1634 affects the quarkus-resteasy extension; memory leaks occur when client requests have low timeouts, where a buffer is not released on timeout, causing increased memory usage and potentially OutOfMemoryError. Public details in IBM bulletins confirm the issue and provide remediation gu...

7.5CVSS7.6AI score0.00759EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2025/02/26 4:56 p.m.10 views

CVE-2025-1634 Io.quarkus:quarkus-resteasy: memory leak in quarkus resteasy classic when client requests timeout

A flaw was found in the quarkus-resteasy extension, which causes memory leaks when client requests with low timeouts are made. If a client request times out, a buffer is not released correctly, leading to increased memory usage and eventual application crash due to OutOfMemoryError...

7.5CVSS7.5AI score0.00759EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/02/26 4:56 p.m.17 views

CVE-2025-1634 Io.quarkus:quarkus-resteasy: memory leak in quarkus resteasy classic when client requests timeout

A flaw was found in the quarkus-resteasy extension, which causes memory leaks when client requests with low timeouts are made. If a client request times out, a buffer is not released correctly, leading to increased memory usage and eventual application crash due to OutOfMemoryError...

7.5CVSS0.00759EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/02/26 12:0 a.m.4 views

PT-2025-8737

Name of the Vulnerable Software and Affected Versions quarkus-resteasy extension affected versions not specified Description A flaw in the quarkus-resteasy extension causes memory leaks when client requests with low timeouts are made. If a client request times out, a buffer is not released...

7.5CVSS7AI score0.00759EPSS
Exploits0References28
Snyk
Snyk
added 2025/02/24 12:0 a.m.4 views

Missing Release of Memory after Effective Lifetime

Overview Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime due to the handling of HTTP requests with low timeouts which allows an unauthenticated attacker to repeatedly send specially crafted requests that trigger a memory leak. Remediation...

8.7CVSS7AI score0.00759EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2025/02/24 12:0 a.m.7 views

ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +821 more potentially affected by CVE-2025-1634 via io.quarkus:quarkus-resteasy (>=3.0.0.Alpha1 <=3.8.6)

io.quarkus:quarkus-resteasy MAVEN version =3.0.0.Alpha1, =0.1.0, =0.1.0, =0.7.20, =0.9.38, =0.9.38, =0.9.38, =0.9.38, =0.9.38, =0.9.38, =1.6.9, =1.6.9, =1.6.9, =1.6.9, =1.6.9, =1.6.18 - com.blaze...

7.5CVSS7.1AI score0.00759EPSS
Exploits0
Snyk
Snyk
added 2025/02/13 3:31 p.m.4 views

Exposure of Data Element to Wrong Session

Overview Affected versions of this package are vulnerable to Exposure of Data Element to Wrong Session due to the shared instance used in field injection without a CDI scope. An attacker can manipulate request data, impersonate users, or access sensitive information by exploiting the leakage of...

8.7CVSS7AI score0.00724EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2025/02/13 3:31 p.m.5 views

at.meks.quarkiverse.axonframework-extension:quarkus-axon-jpa-eventstore-deployment (>=0.1.0-quarkus-3.15-RC3 <=0.1.0-quarkus-3.15-RC4), br.com.labbs:quarkus-monitor-reactive-deployment (>=3.15.3 <=3.15.4) +179 more potentially affected by CVE-2025-1247 via io.quarkus.resteasy.reactive:resteasy-reactive-common-processor (>=3.0.0.Alpha1 <=3.15.3)

io.quarkus.resteasy.reactive:resteasy-reactive-common-processor MAVEN version =3.0.0.Alpha1, =0.1.0-quarkus-3.15-RC3, =3.15.3, =24.5.0-alpha4, =24.5.0-alpha4, =24.5.0-alpha4, =2.0.0, =0.34.0, =0.34.0, =2.2.0.CR1, =2.2.0.CR1, =2.2.0.CR1, =0.0.1.CR38, =0.1.0...

8.3CVSS7.2AI score0.00724EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/01/15 6:56 p.m.10 views

at.ganzleicht.vaadin:vaadin-maven-plugin (>=9.1.1 <=9.1.3.2), ca.uhn.hapi.fhir:hapi-fhir-base-test-jaxrsserver-kotlin (>=5.7.7 <=6.8.0) +118 more potentially affected by CVE-2023-0482 via org.jboss.resteasy:resteasy-core (>=5.0.0.Alpha1 <=5.0.5.Final)

org.jboss.resteasy:resteasy-core MAVEN version =5.0.0.Alpha1, =9.1.1, =5.7.7, =2.0.0-alpha2, =2.0.0-alpha2, =2.0.0-alpha2, =1.14.0, =2.35.0, =2.35.0, =0.15.3, =0.15.3, =0.15.3, =0.15.3, =0.31.0-beta2 and more Source cves: CVE-2023-0482 Source advisory:...

5.5CVSS6.7AI score0.00819EPSS
Exploits0
Rows per page
Query Builder