Build Of Quarkus@* Security Vulnerabilities and Issues — Build Of Quarkus@* CVE List

Lucene search

RedhatBuild Of Quarkus*

4 matches found

CVE•added 2022/08/26 4:15 p.m.•373 views

CVE-2021-3669

A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.

5.5CVSS6.3AI score0.00008EPSS

CVE•added 2023/09/20 10:15 a.m.•174 views

CVE-2023-4853

A flaw was found in Quarkus where HTTP security policies are not sanitizing certain character permutations correctly when accepting requests, resulting in incorrect evaluation of permissions. This issue could allow an attacker to bypass the security policy altogether, resulting in unauthorized endp...

8.1CVSS7.6AI score0.00577EPSS

CVE•added 2023/07/04 2:15 p.m.•76 views

CVE-2023-2974

A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol.

8.1CVSS7.1AI score0.0042EPSS

CVE•added 2022/08/25 8:15 p.m.•65 views

CVE-2021-3914

It was found that the smallrye health metrics UI component did not properly sanitize some user inputs. An attacker could use this flaw to conduct cross-site scripting attacks.

6.1CVSS5.9AI score0.0026EPSS