Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in Quarkus. The state and potentially associated permissions can leak from one web request to another in RestEasy Reactive. This flaw allows a low-privileged user to perform operations on the database with a different set of privileges than intended.
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
Quarkus 安全漏洞
Vulnerability Description
Quarkus是一个用于编写 Java 应用程序的云原生 (Linux) 容器优先框架。 Quarkus 存在安全漏洞,该漏洞源于在 RestEasy Reactive 中,状态和可能关联的权限可能会从一个 Web 请求泄漏到另一个 Web 请求。此漏洞允许低权限用户使用与预期不同的权限集对数据库执行操作。
CVSS Information
N/A
Vulnerability Type
N/A