The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of JBoss RESTEasy OpenSource

JBoss RESTEasy: information disclosure via WebApplicationException
An attacker can bypass access restrictions to data via WebApplicationException of JBoss RESTEasy, in order to obtain sensitive information...
VIGILANCE-VUL-34512
JBoss RESTEasy: information disclosure via WebApplicationException
An attacker can bypass access restrictions to data via WebApplicationException of JBoss RESTEasy, in order to obtain sensitive information...
1879042, CVE-2020-25633, RHSA-2021:0246-01, RHSA-2021:0247-01, RHSA-2021:0248-01, RHSA-2021:0250-01, VIGILANCE-VUL-33372
JBoss RESTEasy: Cross Site Scripting via RESTEASY003870 Exception
An attacker can trigger a Cross Site Scripting via RESTEASY003870 Exception of JBoss RESTEasy, in order to run JavaScript code in the context of the web site...
CVE-2020-10688, RHBUG-1814974, RHSA-2020:2511-01, RHSA-2020:2512-01, RHSA-2020:2513-01, RHSA-2020:2515-01, VIGILANCE-VUL-32522
JBoss RESTEasy: information disclosure via MediaTypeHeaderDelegate Injection
An attacker can bypass access restrictions to data via MediaTypeHeaderDelegate Injection of JBoss RESTEasy, in order to obtain sensitive information...
CVE-2020-1695, FEDORA-2020-239503f5fa, FEDORA-2020-df970da9fc, RESTEASY-2559, RHSA-2020:2106-01, RHSA-2020:2107-01, RHSA-2020:2108-01, RHSA-2020:2112-01, RHSA-2020:2113-01, RHSA-2020:2511-01, RHSA-2020:2512-01, RHSA-2020:2513-01, RHSA-2020:2515-01, RHSA-2020:3637-01, RHSA-2020:3638-01, RHSA-2020:3639-01, RHSA-2020:3642-01, VIGILANCE-VUL-32521
JBoss RESTEasy: vulnerability via HTTP Vary Header
A vulnerability via HTTP Vary Header of JBoss RESTEasy was announced...
CVE-2017-7561, RESTEASY-1704, RHSA-2018:0002-01, RHSA-2018:0003-01, RHSA-2018:0004-01, RHSA-2018:0005-01, RHSA-2018:0478-01, RHSA-2018:0479-01, RHSA-2018:0480-01, RHSA-2018:0481-01, VIGILANCE-VUL-23840
JBoss RESTEasy: Cross Site Scripting via JacksonJsonpInterceptor
An attacker can trigger a Cross Site Scripting via JacksonJsonpInterceptor of JBoss RESTEasy, in order to run JavaScript code in the context of the web site...
1372129, CVE-2016-6348, VIGILANCE-VUL-22455
JBoss RESTEasy: two vulnerabilities
An attacker can use several vulnerabilities of JBoss RESTEasy...
1372117, 1372120, CVE-2016-6345, CVE-2016-6346, RHSA-2017:0517-01, RHSA-2017:0826-01, RHSA-2017:0827-01, RHSA-2017:0828-01, RHSA-2017:0829-01, RHSA-2017:1675-01, RHSA-2017:1676-01, RHSA-2018:0002-01, RHSA-2018:0003-01, RHSA-2018:0004-01, RHSA-2018:0005-01, VIGILANCE-VUL-20541
JBoss RESTEasy: external XML entity injection
An attacker can transmit malicious XML data to JBoss RESTEasy, in order to read a file, scan sites, or trigger a denial of service...
1107901, cpuoct2018, CVE-2014-3490, FEDORA-2014-16845, RHSA-2014:1011-01, RHSA-2014:1039-01, RHSA-2014:1040-01, RHSA-2014:1298-01, RHSA-2014:1904-01, RHSA-2015:0125-01, RHSA-2015:0234-01, RHSA-2015:0235-01, RHSA-2015:0675-01, RHSA-2015:0720-01, RHSA-2015:0765-01, RHSA-2015:1009, VIGILANCE-VUL-16714
Our database contains other pages. You can request a free trial to read them.

Display information about JBoss RESTEasy OpenSource: