Description
A flaw was found in RESTEasy client in all versions of RESTEasy up to 4.5.6.Final. It may allow client users to obtain the server's potentially sensitive information when the server got WebApplicationException from the RESTEasy client call. The highest threat from this vulnerability is to data confidentiality.
Remediation
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25633
Related Vulnerabilities
CVE-2023-26136 Vulnerability in npm package tough-cookie
CVE-2023-35088 Vulnerability in maven package org.apache.inlong:manager-service
CVE-2023-34062 Vulnerability in maven package io.projectreactor.netty:reactor-netty-http
CVE-2021-21347 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2022-36904 Vulnerability in maven package org.jenkins-ci.plugins:repository-connector