All 3 CVE vulnerabilities found in Red Hat build of Quarkus 2.13.9.Final, with AI-generated Chinese analysis, references, and POCs.
Vendor: Red Hat
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-6267 | Quarkus: json payload getting processed prior to security checks when rest resources are used with annotations. CWE-755 | 8.6 | High | 2024-01-25 |
| CVE-2023-6394 | Quarkus: graphql operations over websockets bypass CWE-862 | 7.4 | High | 2023-12-09 |
| CVE-2023-6393 | Quarkus: potential invalid reuse of context when @cacheresult on a uni is used CWE-200 | 5.3 | Medium | 2023-12-06 |
All 3 known CVE vulnerabilities affecting Red Hat build of Quarkus 2.13.9.Final with full Chinese analysis, references, and POCs where available.