Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:38365
HistoryDec 08, 2022 - 3:39 a.m.

Cross-Origin Resource Sharing (CORS)

2022-12-0803:39:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
cross-origin resource sharing
vulnerability
xmlhttprequest
event listeners
get request
post request
readablestream

0.002 Low

EPSS

Percentile

58.4%

JSON

quarkus-vertx-http is vulnerable to an insecure cross-origin resource sharing (CORS) policy. The vulnerability exists because the XMLHttpRequest has no event listeners registered on the object returned by the XMLHttpRequest upload property, allowing an attacker to send malicious GET and POST request to the CORS filter within a ReadableStream object.

Related

cve 1
cvelist 1
github 1
prion 1
nvd 1
osv 2
redhatcve 1
redhat 2
ibm 1
oracle 1
cve
cve
CVE-2022-4147
2022-12-06 19:15:10
cvelist
cvelist
CVE-2022-4147
2022-12-06 00:00:00
github
github
Quarkus CORS filter allows simple GET and POST requests with an invalid Origin to proceed
2022-12-06 21:30:46
prion
prion
Cross site request forgery (csrf)
2022-12-06 19:15:00
nvd
nvd
CVE-2022-4147
2022-12-06 19:15:10
osv
osv
Quarkus CORS filter allows simple GET and POST requests with an invalid Origin to proceed
2022-12-06 21:30:46
CVE-2022-4147
2022-12-06 19:15:10
redhatcve
redhatcve
CVE-2022-4147
2022-11-28 08:56:00
redhat
redhat
(RHSA-2022:8957) Important: Red Hat build of Quarkus Platform 2.7.6.SP3 and security update
2022-12-13 13:18:12
(RHSA-2022:9023) Important: Red Hat build of Quarkus 2.13.5 release and security update
2022-12-14 13:13:39
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs
2023-01-26 10:16:23
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00

0.002 Low

EPSS

Percentile

58.4%

JSON
Related for VERACODE:38365
cve1cvelist1github1prion1nvd1osv2redhatcve1redhat2ibm1oracle1