Vulnerabilities

CVE-2022-0981

by Fred · 23/03/2022

A flaw was found in Quarkus. The state and potentially associated permissions can leak from one web request to another in RestEasy Reactive. This flaw allows a low-privileged user to perform operations on the database with a different set of privileges than intended.

Date published : 2022-03-23

https://bugzilla.redhat.com/show_bug.cgi?id=2062520

https://github.com/quarkusio/quarkus/issues/23269

Similar

Tags: Cybersecurity Alert