io.quarkus.resteasy.reactive:resteasy-reactive

Maven2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting io.quarkus.resteasy.reactive:resteasy-reactivepage 1 of 1

CVE-2023-6267HIGHCVSS 8.6EG 8.6✓ Fixed in 3.2.9.Final
2024-01-25
vulnerable: 3.0.0.Final ... 3.2.8.Final (20 versions)
A flaw was found in the json payload. If annotation based security is used to secure a REST resource, the JSON body that the resource may consume is being processed (deserialized) prior to the security constraints being evaluated and appli…
CVE-2024-1726MEDIUMCVSS 5.3EG 5.3✓ Fixed in 3.2.11.Final
2024-04-25
vulnerable: 1.11.0.Beta1 ... 3.2.9.Final (165 versions)
A flaw was discovered in the RESTEasy Reactive implementation in Quarkus. Due to security checks for some JAX-RS endpoints being performed after serialization, more processing resources are consumed while the HTTP request is checked. In ce…

Check whether io.quarkus.resteasy.reactive:resteasy-reactive is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for io.quarkus.resteasy.reactive:resteasy-reactive CVEs against the assets you own.

Start Free Scan →