Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-1937

Malicious code in bioql PyPI...

8.1CVSS7.2AI score0.00489EPSS
Exploits0References7
RedHat Linux
RedHat Linuxadded 2024/07/25 3:4 p.m.1 views

quarkus-core: Leak of local configuration properties into Quarkus applications

A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, therefore, running the resulting application inherits the values captured at build time. Some local environment variables may have been...

7CVSS7.1AI score0.00044EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2024/07/25 3:4 p.m.32 views

Important: Red Hat Security Advisory: Apicurio Registry (container images) release and security update [ 2.6.1 GA ]

An update to the images for Red Hat build of Apicurio Registry is now available from the Red Hat Container Catalog. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of...

7.5CVSS6.6AI score0.03394EPSS
Exploits2References6
Tenable Nessus
Tenable Nessusadded 2024/07/12 12:0 a.m.17 views

RHEL 6 : io.quarkus_quarkus-core (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - quarkus-core: Leak of local configuration properties into Quarkus applications CVE-2024-2700 Note that Nessus has n...

7CVSS6.9AI score0.00044EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2024/06/22 12:0 a.m.26 views

RHEL 6 : quarkus-core (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - quarkus-core: Leak of local configuration properties into Quarkus applications CVE-2024-2700 Note that Nessus has n...

7CVSS6.8AI score0.00044EPSS
Exploits0References1
vulnersOsv
vulnersOsvadded 2024/04/04 3:30 p.m.1 views

ai.timefold.solver:timefold-solver-quarkus (>=1.2.0 <=1.9.0), ai.timefold.solver:timefold-solver-quarkus-benchmark (>=1.2.0 <=1.9.0) +2610 more potentially affected by CVE-2024-2700 via io.quarkus:quarkus-core (>=3.3.0.CR1 <=3.8.3)

io.quarkus:quarkus-core MAVEN version =3.3.0.CR1, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =0.0.10, =0.0.14 and more Source cves: CVE-2024-2700 Source a...

7CVSS7AI score0.00044EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2024/04/04 3:30 p.m.1 views

com.github.t1:wunderbar.demo.product (=3.3), com.mobiera.libs:aircast-api-jakarta (=1.3) +600 more potentially affected by CVE-2024-2700 via io.quarkus:quarkus-core (>=3.9.0.CR1 <=3.9.1)

io.quarkus:quarkus-core MAVEN version =3.9.0.CR1, =0.3.0, =0.2.3, =0.3.4, =0.9.3, =0.9.9, =3.3.0, =3.3.0.CR2 and more Source cves: CVE-2024-2700 Source advisory: OSV:GHSA-F8H5-V2VG-46RR...

7CVSS7AI score0.00044EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2024/04/04 3:30 p.m.3 views

ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +6694 more potentially affected by CVE-2024-2700 via io.quarkus:quarkus-core (>=0.11.0 <=3.2.11.Final)

io.quarkus:quarkus-core MAVEN version =0.11.0, =0.1.0, =0.1.0, =0.0.2, =0.1.1, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.11 and more Source cves: CVE-2024-2700 Source advisory: OSV:GHSA-F8H5-V2VG-46RR...

7CVSS7AI score0.00044EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2024/04/04 1:46 p.m.20 views

CVE-2024-2700 Quarkus-core: leak of local configuration properties into quarkus applications

A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, therefore, running the resulting application inherits the values captured at build time. Some local environment variables may have been...

7CVSS6.6AI score0.00044EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2024/04/04 2:24 a.m.28 views

CVE-2024-2700

A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, therefore, running the resulting application inherits the values captured at build time. Some local environment variables may have been...

7CVSS6.8AI score0.00044EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/04/04 12:0 a.m.2 views

PT-2024-21609 · Quarkus · Quarkus

Name of the Vulnerable Software and Affected Versions: Quarkus affected versions not specified Description: A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, and the resulting applicatio...

7CVSS7.7AI score0.00044EPSS
Exploits0References24
vulnersOsv
vulnersOsvadded 2023/07/04 3:30 p.m.1 views

ai.timefold.solver:timefold-solver-quarkus (>=0.8.38 <=0.8.42), ai.timefold.solver:timefold-solver-quarkus-benchmark (>=0.8.38 <=0.8.42) +3888 more potentially affected by CVE-2023-2974 via io.quarkus:quarkus-core (>=0.11.0 <=2.16.7.Final)

io.quarkus:quarkus-core MAVEN version =0.11.0, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.42 and more Source cve...

8.1CVSS6.9AI score0.00489EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2023/07/04 2:15 p.m.1 views

CVE-2023-2974

A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol...

8.1CVSS6.8AI score0.00489EPSS
Exploits0References4
NVD
NVDadded 2023/07/04 2:15 p.m.9 views

CVE-2023-2974

A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol...

8.1CVSS7.1AI score0.00489EPSS
Exploits0References3
OSV
OSVadded 2023/07/04 2:15 p.m.2 views

CVE-2023-2974

A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol...

8.1CVSS5.7AI score0.00489EPSS
Exploits0References3
Prion
Prionadded 2023/07/04 2:15 p.m.16 views

Design/Logic Flaw

A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol...

5.5CVSS7.9AI score0.00489EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2023/07/04 1:24 p.m.17 views

CVE-2023-2974 Quarkus-core: tls protocol configured with quarkus.http.ssl.protocols is not enforced, client can enforce weaker supported tls protocol

A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol...

6.5CVSS8.2AI score0.00489EPSS
Exploits0References3
CVE
CVEadded 2023/07/04 1:24 p.m.101 views

CVE-2023-2974

CVE-2023-2974 affects quarkus-core. The vulnerability arises because the TLS protocol configured via quarkus.http.ssl.protocols is not enforced, allowing a client to force the use of a weaker supported TLS protocol. Documented impact includes potential compromise of confidentiality and integrity,...

8.1CVSS7.1AI score0.00489EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVEadded 2023/06/29 4:46 a.m.37 views

CVE-2023-2974

A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol...

6.5CVSS6.9AI score0.00489EPSS
Exploits0References3
Rows per page
Query Builder