Vulnerabilities

CVE-2025-1247

by Fred · 13/02/2025

A flaw was found in Quarkus REST that allows request parameters to leak between concurrent requests if endpoints use field injection without a CDI scope. This vulnerability allows attackers to manipulate request data, impersonate users, or access sensitive information.

More information : https://access.redhat.com/errata/RHSA-2025:1884

Similar

Tags: Cybersecurity Alert