Lucene search
K

713 matches found

Positive Technologies
Positive Technologies
added 2024/10/07 12:0 a.m.14 views

PT-2024-7028 · Unknown +2 · Resteasy-Netty4 +2

Name of the Vulnerable Software and Affected Versions: resteasy-netty4 library affected versions not specified Description: A vulnerability was found in the resteasy-netty4 library arising from improper handling of HTTP requests using smuggling techniques. When an HTTP smuggling request with an...

9.8CVSS6.1AI score0.04913EPSS
Exploits1References46
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/01 6:49 a.m.16 views

Security Bulletin: IBM SPSS Analytic Server is vulnerable to a privilege escalation due to RESTEasy (CVE-2023-0482)

Summary IBM SPSS Analytic Server is vulnerable to a privilege escalation due to RESTEasy CVE-2023-0482 Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions ---|--- IBM SPSS Analytic Server| 3.5...

5.5CVSS8.7AI score0.00819EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/09/15 11:33 p.m.18 views

RHSA-2016:2604 Red Hat Security Advisory: resteasy-base security and bug fix update

Bulletin has no description...

9CVSS9.4AI score0.04847EPSS
Exploits0References10
OSV
OSV
added 2024/09/13 8:54 a.m.12 views

RHSA-2014:1011 Red Hat Security Advisory: resteasy-base security update

Bulletin has no description...

7.5CVSS9.3AI score0.04572EPSS
Exploits0References7
OSV
OSV
added 2024/09/13 7:59 a.m.15 views

RHSA-2012:1059 Red Hat Security Advisory: resteasy security update

Bulletin has no description...

5CVSS7.4AI score0.03213EPSS
Exploits0References10
OSV
OSV
added 2024/09/13 7:59 a.m.20 views

RHSA-2012:1058 Red Hat Security Advisory: resteasy security update

Bulletin has no description...

5CVSS7.4AI score0.03213EPSS
Exploits0References10
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/15 3:40 p.m.37 views

Security Bulletin: Several Security Vulnerabilities were discovered in IBM Security Directory Suite. (CVE-2023-24998, CVE-2023-28867, CVE-2023-0482)

Summary Several vulnerabilities were addressed in WebSphere Application Server Liberty components shipped with the IBM Security Directory Suite Vulnerability Details CVEID:CVE-2023-24998 DESCRIPTION: Apache Commons FileUpload and Tomcat are vulnerable to a denial of service, caused by not limit t...

7.5CVSS7.8AI score0.46836EPSS
Exploits1Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/24 12:0 a.m.4 views

The vulnerability of the RESTEasy Reactive Java framework component in Quarkus allows attackers to trigger a service failure.

The vulnerability of the RESTEasy Reactive Java framework in Quarkus is related to improper permission storage. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

5.3CVSS5.8AI score0.00721EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/07/12 12:0 a.m.25 views

RHEL 8 : resteasy (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - RESTEasy: PathParam in RESTEasy can lead to a reflected XSS attack CVE-2021-20293 Note that Nessus has not tested f...

6.1CVSS6.1AI score0.00856EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2024/07/10 12:0 a.m.20 views

pki-core security update

jss ldapjdk pki-core 10.15.1-1.0.1 - Remove upstream reference 10.15.1-1 - Rebase to PKI 10.15.1 - Fix CVE 2023-4727 resteasy tomcatjss...

7.5CVSS6.9AI score0.00659EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.23 views

RHEL 8 : resteasy-base (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - resteasy-client: potential sensitive information leakage in JAX-RS RESTEasy Client's WebApplicationException handli...

5.3CVSS6.3AI score0.01211EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.22 views

RHEL 7 : resteasy-base (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - resteasy-client: potential sensitive information leakage in JAX-RS RESTEasy Client's WebApplicationException handli...

5.3CVSS6.3AI score0.01211EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.24 views

RHEL 9 : resteasy (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - RESTEasy: creation of insecure temp files CVE-2023-0482 Note that Nessus has not tested for this issue but has...

5.5CVSS6.4AI score0.00819EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.24 views

RHEL 8 : resteasy (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - RESTEasy: creation of insecure temp files CVE-2023-0482 Note that Nessus has not tested for this issue but has...

5.5CVSS6.6AI score0.00819EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.29 views

RHEL 7 : resteasy (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - RESTEasy: PathParam in RESTEasy can lead to a reflected XSS attack CVE-2021-20293 Note that Nessus has not tested f...

6.1CVSS6.4AI score0.00856EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.17 views

RHEL 7 : rest (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - RESTEasy: Insufficient use of random values in RESTEasy async jobs could lead to loss of data...

7.5CVSS7.1AI score0.04913EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.23 views

RHEL 7 : candlepin (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - resteasy: Improper validation of response header in MediaTypeHeaderDelegate.java class CVE-2020-1695 Note that Ness...

7.5CVSS7.3AI score0.02023EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.28 views

RHEL 7 : resteasy (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - RESTEasy: Insufficient use of random values in RESTEasy async jobs could lead to loss of data...

6.7AI score0.04913EPSS
Exploits0References5
Rockylinux
Rockylinux
added 2024/05/10 2:32 p.m.11 views

resteasy bug fix and enhancement update

An update is available for resteasy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.4...

6.8AI score
Exploits0
Veracode
Veracode
added 2024/04/26 12:55 p.m.17 views

Improper Authorization

Quarkus is vulnerable to Improper Authorization. This vulnerability is due to the mishandling of method declarations in abstract Java classes or by Quarkus extensions, leading to unenforced authorization for RestEasy Classic or Reactive JAX-RS endpoints...

6.5CVSS6.6AI score0.00458EPSS
Exploits0References6Affected Software3
Rows per page
Query Builder