Description
JacksonJsonpInterceptor in RESTEasy might allow remote attackers to conduct a cross-site script inclusion (XSSI) attack.
Remediation
References
https://bugzilla.redhat.com/show_bug.cgi?id=1372129
Related Vulnerabilities
CVE-2023-3691 Vulnerability in maven package org.webjars.bower:layui
CVE-2021-20289 Vulnerability in maven package org.jboss.resteasy:resteasy-core
CVE-2017-16129 Vulnerability in maven package org.webjars.bower:superagent
CVE-2017-2600 Vulnerability in maven package org.jenkins-ci.main:jenkins-core
CVE-2023-29471 Vulnerability in maven package com.typesafe.akka:akka-stream-kafka_2.13