Описание
RESTEasy allows remote authenticated users to obtain sensitive information by leveraging "insufficient use of random values" in async jobs.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| resteasy | fixed | 3.1.0-1 | package | |
| resteasy | no-dsa | jessie | package | |
| resteasy3.0 | fixed | 3.0.26-1 | package |
Примечания
https://bugzilla.redhat.com/show_bug.cgi?id=1372117
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 9 лет назад
RESTEasy allows remote authenticated users to obtain sensitive information by leveraging "insufficient use of random values" in async jobs.
CVSS3: 3.5
redhat
больше 9 лет назад
RESTEasy allows remote authenticated users to obtain sensitive information by leveraging "insufficient use of random values" in async jobs.
CVSS3: 6.5
nvd
больше 9 лет назад
RESTEasy allows remote authenticated users to obtain sensitive information by leveraging "insufficient use of random values" in async jobs.
CVSS3: 6.5
github
больше 3 лет назад
Exposure of Sensitive Information to an Unauthorized Actor in RESTEasy