CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-1937

Malicious code in bioql PyPI...

8.1CVSS7.2AI score0.00489EPSS

Exploits0References7

RedHat Linux•added 2024/07/25 3:4 p.m.•1 views

quarkus-core: Leak of local configuration properties into Quarkus applications

A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, therefore, running the resulting application inherits the values captured at build time. Some local environment variables may have been...

7CVSS7.1AI score0.00044EPSS

Exploits0References4

RedHat Linux•added 2024/07/25 3:4 p.m.•32 views

Important: Red Hat Security Advisory: Apicurio Registry (container images) release and security update [ 2.6.1 GA ]

An update to the images for Red Hat build of Apicurio Registry is now available from the Red Hat Container Catalog. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of...

7.5CVSS6.6AI score0.03394EPSS

Exploits2References6

Tenable Nessus•added 2024/07/12 12:0 a.m.•17 views

RHEL 6 : io.quarkus_quarkus-core (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - quarkus-core: Leak of local configuration properties into Quarkus applications CVE-2024-2700 Note that Nessus has n...

7CVSS6.9AI score0.00044EPSS

Exploits0References1

Tenable Nessus•added 2024/06/22 12:0 a.m.•26 views

RHEL 6 : quarkus-core (Unpatched Vulnerability)

7CVSS6.8AI score0.00044EPSS

Exploits0References1

vulnersOsv•added 2024/04/04 3:30 p.m.•1 views

ai.timefold.solver:timefold-solver-quarkus (>=1.2.0 <=1.9.0), ai.timefold.solver:timefold-solver-quarkus-benchmark (>=1.2.0 <=1.9.0) +2610 more potentially affected by CVE-2024-2700 via io.quarkus:quarkus-core (>=3.3.0.CR1 <=3.8.3)

io.quarkus:quarkus-core MAVEN version =3.3.0.CR1, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =0.0.10, =0.0.14 and more Source cves: CVE-2024-2700 Source a...

7CVSS7AI score0.00044EPSS

Exploits0

vulnersOsv•added 2024/04/04 3:30 p.m.•1 views

com.github.t1:wunderbar.demo.product (=3.3), com.mobiera.libs:aircast-api-jakarta (=1.3) +600 more potentially affected by CVE-2024-2700 via io.quarkus:quarkus-core (>=3.9.0.CR1 <=3.9.1)

io.quarkus:quarkus-core MAVEN version =3.9.0.CR1, =0.3.0, =0.2.3, =0.3.4, =0.9.3, =0.9.9, =3.3.0, =3.3.0.CR2 and more Source cves: CVE-2024-2700 Source advisory: OSV:GHSA-F8H5-V2VG-46RR...

7CVSS7AI score0.00044EPSS

Exploits0

vulnersOsv•added 2024/04/04 3:30 p.m.•3 views

ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-quarkus-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +6694 more potentially affected by CVE-2024-2700 via io.quarkus:quarkus-core (>=0.11.0 <=3.2.11.Final)

io.quarkus:quarkus-core MAVEN version =0.11.0, =0.1.0, =0.1.0, =0.0.2, =0.1.1, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.11 and more Source cves: CVE-2024-2700 Source advisory: OSV:GHSA-F8H5-V2VG-46RR...

7CVSS7AI score0.00044EPSS

Exploits0

Vulnrichment•added 2024/04/04 1:46 p.m.•20 views

CVE-2024-2700 Quarkus-core: leak of local configuration properties into quarkus applications

7CVSS6.6AI score0.00044EPSS

Exploits0References8

RedhatCVE•added 2024/04/04 2:24 a.m.•28 views

CVE-2024-2700

7CVSS6.8AI score0.00044EPSS

Exploits0References3

Positive Technologies•added 2024/04/04 12:0 a.m.•1 views

PT-2024-21609 · Quarkus · Quarkus

Name of the Vulnerable Software and Affected Versions: Quarkus affected versions not specified Description: A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, and the resulting applicatio...

7CVSS7.7AI score0.00044EPSS

Exploits0References24

vulnersOsv•added 2023/07/04 3:30 p.m.•1 views

ai.timefold.solver:timefold-solver-quarkus (>=0.8.38 <=0.8.42), ai.timefold.solver:timefold-solver-quarkus-benchmark (>=0.8.38 <=0.8.42) +3888 more potentially affected by CVE-2023-2974 via io.quarkus:quarkus-core (>=0.11.0 <=2.16.7.Final)

io.quarkus:quarkus-core MAVEN version =0.11.0, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.42 and more Source cve...

8.1CVSS6.9AI score0.00489EPSS

Exploits0

ATTACKERKB•added 2023/07/04 2:15 p.m.•1 views

CVE-2023-2974

A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol...

8.1CVSS6.8AI score0.00489EPSS

Exploits0References4

NVD•added 2023/07/04 2:15 p.m.•9 views

CVE-2023-2974

8.1CVSS7.1AI score0.00489EPSS

Exploits0References3

OSV•added 2023/07/04 2:15 p.m.•2 views

CVE-2023-2974

8.1CVSS5.7AI score0.00489EPSS

Exploits0References3

Prion•added 2023/07/04 2:15 p.m.•16 views

Design/Logic Flaw

5.5CVSS7.9AI score0.00489EPSS

Exploits0References3Affected Software1

CVE•added 2023/07/04 1:24 p.m.•101 views

CVE-2023-2974

CVE-2023-2974 affects quarkus-core. The vulnerability arises because the TLS protocol configured via quarkus.http.ssl.protocols is not enforced, allowing a client to force the use of a weaker supported TLS protocol. Documented impact includes potential compromise of confidentiality and integrity,...

8.1CVSS7.1AI score0.00489EPSS

Exploits0References3Affected Software1