Lucene search
Veracode Vulnerability DatabaseVERACODE:29847HistoryMar 29, 2021 - 6:24 a.m.
Information Disclosure
2021-03-2906:24:54
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
resteasy-core
vulnerability
information disclosure
exception response
jax-rs
resource method's parameter value
EPSS
0.001
Percentile
30.5%
resteasy-core is vulnerable to information disclosure. It exposes the endpoint class and method names as part of the exception response as a result of failure to convert one of the request URI path or query values to the matching JAX-RS resource method’s parameter value.
Related
osv
osv
Exposure of class information in RESTEasy
2021-04-07 21:51:33
CVE-2021-20289
2021-03-26 17:15:13
cve
cve
CVE-2021-20289
2021-03-26 17:15:13
nessus
nessus
RHEL 8 : candlepin (Unpatched Vulnerability)
2024-06-03 00:00:00
Amazon Linux 2 : resteasy-base (ALAS-2024-2398)
2024-01-09 00:00:00
redhatcve
redhatcve
CVE-2021-20289
2021-03-16 14:32:50
ubuntucve
ubuntucve
CVE-2021-20289
2021-03-26 00:00:00
prion
prion
Design/Logic Flaw
2021-03-26 17:15:00
github
github
Exposure of class information in RESTEasy
2021-04-07 21:51:33
cvelist
cvelist
CVE-2021-20289
2021-03-26 16:28:44
nvd
nvd
CVE-2021-20289
2021-03-26 17:15:13
amazon
amazon
Medium: resteasy-base
2024-01-03 21:04:00
redhat
redhat
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00