Red Hat Quarkus Vulnerabilities
Red%20hat Quarkus vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Unauthorized Data Access via Incorrect Cookie Parsing
CVE-2023-4639Red HatMigration Toolkit For ...7.4HIGHQuarkus: json payload getting processed prior to security checks when rest resources are used with annotations.
CVE-2023-6267Red HatRed Hat Build Of Quark...8.6HIGHUndertow: ajp request closes connection exceeding maxrequestsize
CVE-2023-5379Red HatImportant: Red Hat Jbo...7.5HIGHQuarkus: graphql operations over websockets bypass
CVE-2023-6394Red HatRed Hat Build Of Quark...7.4HIGHQuarkus: potential invalid reuse of context when @cacheresult on a uni is used
CVE-2023-6393Red HatRed Hat Build Of Quark...5.3MEDIUMId and access tokens leak via the authorization code flow
CVE-2023-1584Red Hatquarkus-oidc7.5HIGHUndertow: outofmemoryerror due to @multipartconfig handling
CVE-2023-3223Red HatRed Hat Fuse 7.12.17.5HIGHCodehaus-plexus: xml external entity (xxe) injection
CVE-2022-4245Red HatRhint Camel-k-1.10.14.3MEDIUMCodehaus-plexus: directory traversal
CVE-2022-4244Red HatRhint Camel-k-1.10.17.5HIGHQuarkus: http security policy bypass
CVE-2023-4853Red HatOpenshift Serverless 1...8.1HIGHInfinite loop in sslconduit during close
CVE-2023-1108Red Hatundertow7.5HIGHDrools: unsafe data deserialization in streamutils
CVE-2022-1415Red HatRHPam 7.13.1 Async8.1HIGHTls protocol configured with quarkus.http.ssl.protocols is not enforced, client can enforce weaker supported tls protocol
CVE-2023-2974Red HatQuarkus8.1HIGH