Description
A flaw was found in RESTEasy client in all versions of RESTEasy up to 4.5.6.Final. It may allow client users to obtain the server's potentially sensitive information when the server got WebApplicationException from the RESTEasy client call. The highest threat from this vulnerability is to data confidentiality.
Remediation
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25633
Related Vulnerabilities
CVE-2017-18239 Vulnerability in maven package com.jason-goodwin:authentikat-jwt_2.11
CVE-2016-0782 Vulnerability in maven package org.apache.activemq:activemq-web-console
CVE-2020-5397 Vulnerability in maven package org.springframework:spring-webmvc
CVE-2021-4040 Vulnerability in maven package org.apache.activemq:artemis-commons
CVE-2020-21125 Vulnerability in maven package com.bstek.ureport:ureport2-console