Количество 4
Количество 4
CVE-2023-2974
A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol.
CVE-2023-2974
A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol.
GHSA-3fhx-3vvg-2j84
quarkus-core vulnerable to client driven TLS cipher downgrading
BDU:2023-03765
Уязвимость реализации протокола TLS Java-фреймворка Quarkus, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-2974 A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol. | CVSS3: 6.5 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-2974 A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol. | CVSS3: 6.5 | 0% Низкий | больше 2 лет назад |
| GHSA-3fhx-3vvg-2j84 quarkus-core vulnerable to client driven TLS cipher downgrading | CVSS3: 6.5 | 0% Низкий | больше 2 лет назад |
 | BDU:2023-03765 Уязвимость реализации протокола TLS Java-фреймворка Quarkus, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 6.5 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу