cpe:2.3:a:redhat:build_of_quarkus:2.7:*:*:*:*:*:*:*
A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol.
Max CVSS
8.1
EPSS Score
0.06%
Published
2023-07-04
Updated
2023-07-11
It was found that the smallrye health metrics UI component did not properly sanitize some user inputs. An attacker could use this flaw to conduct cross-site scripting attacks.
Max CVSS
6.1
EPSS Score
0.08%
Published
2022-08-25
Updated
2022-09-02
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!