713 matches found
PT-2024-7028 · Unknown +2 · Resteasy-Netty4 +2
Name of the Vulnerable Software and Affected Versions: resteasy-netty4 library affected versions not specified Description: A vulnerability was found in the resteasy-netty4 library arising from improper handling of HTTP requests using smuggling techniques. When an HTTP smuggling request with an...
Security Bulletin: IBM SPSS Analytic Server is vulnerable to a privilege escalation due to RESTEasy (CVE-2023-0482)
Summary IBM SPSS Analytic Server is vulnerable to a privilege escalation due to RESTEasy CVE-2023-0482 Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions ---|--- IBM SPSS Analytic Server| 3.5...
RHSA-2016:2604 Red Hat Security Advisory: resteasy-base security and bug fix update
Bulletin has no description...
RHSA-2014:1011 Red Hat Security Advisory: resteasy-base security update
Bulletin has no description...
RHSA-2012:1059 Red Hat Security Advisory: resteasy security update
Bulletin has no description...
RHSA-2012:1058 Red Hat Security Advisory: resteasy security update
Bulletin has no description...
Security Bulletin: Several Security Vulnerabilities were discovered in IBM Security Directory Suite. (CVE-2023-24998, CVE-2023-28867, CVE-2023-0482)
Summary Several vulnerabilities were addressed in WebSphere Application Server Liberty components shipped with the IBM Security Directory Suite Vulnerability Details CVEID:CVE-2023-24998 DESCRIPTION: Apache Commons FileUpload and Tomcat are vulnerable to a denial of service, caused by not limit t...
The vulnerability of the RESTEasy Reactive Java framework component in Quarkus allows attackers to trigger a service failure.
The vulnerability of the RESTEasy Reactive Java framework in Quarkus is related to improper permission storage. Exploiting this vulnerability can allow an attacker to cause service failures remotely...
RHEL 8 : resteasy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - RESTEasy: PathParam in RESTEasy can lead to a reflected XSS attack CVE-2021-20293 Note that Nessus has not tested f...
pki-core security update
jss ldapjdk pki-core 10.15.1-1.0.1 - Remove upstream reference 10.15.1-1 - Rebase to PKI 10.15.1 - Fix CVE 2023-4727 resteasy tomcatjss...
RHEL 8 : resteasy-base (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - resteasy-client: potential sensitive information leakage in JAX-RS RESTEasy Client's WebApplicationException handli...
RHEL 7 : resteasy-base (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - resteasy-client: potential sensitive information leakage in JAX-RS RESTEasy Client's WebApplicationException handli...
RHEL 9 : resteasy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - RESTEasy: creation of insecure temp files CVE-2023-0482 Note that Nessus has not tested for this issue but has...
RHEL 8 : resteasy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - RESTEasy: creation of insecure temp files CVE-2023-0482 Note that Nessus has not tested for this issue but has...
RHEL 7 : resteasy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - RESTEasy: PathParam in RESTEasy can lead to a reflected XSS attack CVE-2021-20293 Note that Nessus has not tested f...
RHEL 7 : rest (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - RESTEasy: Insufficient use of random values in RESTEasy async jobs could lead to loss of data...
RHEL 7 : candlepin (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - resteasy: Improper validation of response header in MediaTypeHeaderDelegate.java class CVE-2020-1695 Note that Ness...
RHEL 7 : resteasy (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - RESTEasy: Insufficient use of random values in RESTEasy async jobs could lead to loss of data...
resteasy bug fix and enhancement update
An update is available for resteasy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.4...
Improper Authorization
Quarkus is vulnerable to Improper Authorization. This vulnerability is due to the mishandling of method declarations in abstract Java classes or by Quarkus extensions, leading to unenforced authorization for RestEasy Classic or Reactive JAX-RS endpoints...