Описание
It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat build of Quarkus | smallrye-graphql | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-444
https://bugzilla.redhat.com/show_bug.cgi?id=2108396smallrye-graphql: Request Context not terminated with GraphQL
5.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 9.8
nvd
больше 3 лет назад
It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior.
CVSS3: 9.8
github
больше 3 лет назад
Quarkus does not terminate HTTP requests header context
5.3 Medium
CVSS3