Lucene search
GoogleOSV:GHSA-244R-FCJ3-GHJQHistoryApr 07, 2021 - 9:51 p.m.
Exposure of class information in RESTEasy
2021-04-0721:51:33
Google
osv.dev
69
resteasy
vulnerability
data confidentiality
exception response
jax-rs
EPSS
0.001
Percentile
30.5%
A flaw was found in RESTEasy in all current versions of RESTEasy up to 4.6.0.Final. The endpoint class and method names are returned as part of the exception response when RESTEasy cannot convert one of the request URI path or query values to the matching JAX-RS resource method’s parameter value. The highest threat from this vulnerability is to data confidentiality.
Related
cve
cve
CVE-2021-20289
2021-03-26 17:15:13
nessus
nessus
RHEL 8 : candlepin (Unpatched Vulnerability)
2024-06-03 00:00:00
Amazon Linux 2 : resteasy-base (ALAS-2024-2398)
2024-01-09 00:00:00
prion
prion
Design/Logic Flaw
2021-03-26 17:15:00
osv
osv
CVE-2021-20289
2021-03-26 17:15:13
github
github
Exposure of class information in RESTEasy
2021-04-07 21:51:33
ubuntucve
ubuntucve
CVE-2021-20289
2021-03-26 00:00:00
redhatcve
redhatcve
CVE-2021-20289
2021-03-16 14:32:50
cvelist
cvelist
CVE-2021-20289
2021-03-26 16:28:44
veracode
veracode
Information Disclosure
2021-03-29 06:24:54
nvd
nvd
CVE-2021-20289
2021-03-26 17:15:13
amazon
amazon
Medium: resteasy-base
2024-01-03 21:04:00
redhat
redhat
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00