CVE-2020-25633

Опубликовано: 18 сент. 2020

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 5.3

Описание

A flaw was found in RESTEasy client in all versions of RESTEasy up to 4.5.6.Final. It may allow client users to obtain the server's potentially sensitive information when the server got WebApplicationException from the RESTEasy client call. The highest threat from this vulnerability is to data confidentiality.

Релиз	Статус	Примечание
bionic	DNE
devel	needed
esm-apps/focal	released	3.6.2-2ubuntu0.20.04.1~esm1
esm-apps/jammy	released	3.6.2-2ubuntu0.22.04.1~esm1
esm-apps/noble	released	3.6.2-2ubuntu0.24.04.1~esm1
esm-apps/xenial	released	3.0.6-3ubuntu0.1~esm1
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needed
groovy	ignored	end of life
hirsute	ignored	end of life

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	needed
esm-apps/bionic	released	3.0.26-1~18.04.1~esm1
esm-apps/focal	released	3.0.26-1ubuntu0.1~esm1
esm-apps/jammy	released	3.0.26-3ubuntu0.1
esm-apps/noble	released	3.0.26-6ubuntu0.24.04.1
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needed
groovy	ignored	end of life
hirsute	ignored	end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 45%

0.00228

Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2020-25633

CVSS3: 5.3

redhat

почти 5 лет назад

CVE-2020-25633

CVSS3: 5.3

nvd

почти 5 лет назад

CVE-2020-25633

CVSS3: 5.3

debian

почти 5 лет назад

A flaw was found in RESTEasy client in all versions of RESTEasy up to ...

GHSA-hr32-mgpm-qf2f

CVSS3: 5.3

github

около 4 лет назад

Generation of Error Message Containing Sensitive Information in RESTEasy client

ROS-20250807-05

CVSS3: 7.5

redos

7 дней назад

Множественные уязвимости resteasy

EPSS

Процентиль: 45%

0.00228

Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

CVE-2020-25633

Описание

Пакет resteasy

Пакет resteasy3.0

Ссылки на источники

Связанные уязвимости