VulnerableCode Package Details - pkg:deb/debian/resteasy@3.1.0-1?distro=sid

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-17rd-f1mq-kfgr	Exposure of Sensitive Information to an Unauthorized Actor RESTEasy allows remote authenticated users to obtain sensitive information by leveraging "insufficient use of random values" in async jobs.	CVE-2016-6345 GHSA-vxhj-3x7p-jxp5
VCID-7uh1-a5ng-rqch	JacksonJsonpInterceptor susceptible to cross-site script inclusion (XSSI) attack JacksonJsonpInterceptor in RESTEasy might allow remote attackers to conduct a cross-site script inclusion (XSSI) attack.	CVE-2016-6348 GHSA-9xfc-j5mf-9w5p
VCID-jms5-sctw-mkc5	Cross-site Scripting Cross-site scripting (XSS) vulnerability in the default exception handler in RESTEasy allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CVE-2016-6347 GHSA-r346-rmrg-qpgh
VCID-wbgc-tuj3-47by	Uncontrolled Resource Consumption RESTEasy enables `GZIPInterceptor`, which allows remote attackers to cause a denial of service via unspecified vectors.	CVE-2016-6346 GHSA-wxvr-vqfp-9cqw

Vulnerability

Summary

Aliases

VCID-17rd-f1mq-kfgr

Exposure of Sensitive Information to an Unauthorized Actor RESTEasy allows remote authenticated users to obtain sensitive information by leveraging "insufficient use of random values" in async jobs.

CVE-2016-6345
GHSA-vxhj-3x7p-jxp5

VCID-7uh1-a5ng-rqch

JacksonJsonpInterceptor susceptible to cross-site script inclusion (XSSI) attack JacksonJsonpInterceptor in RESTEasy might allow remote attackers to conduct a cross-site script inclusion (XSSI) attack.

CVE-2016-6348
GHSA-9xfc-j5mf-9w5p

VCID-jms5-sctw-mkc5

Cross-site Scripting Cross-site scripting (XSS) vulnerability in the default exception handler in RESTEasy allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2016-6347
GHSA-r346-rmrg-qpgh

VCID-wbgc-tuj3-47by

Uncontrolled Resource Consumption RESTEasy enables `GZIPInterceptor`, which allows remote attackers to cause a denial of service via unspecified vectors.

CVE-2016-6346
GHSA-wxvr-vqfp-9cqw

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:56:16.816180+00:00	Debian Importer	Fixing	VCID-jms5-sctw-mkc5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:46:08.291639+00:00	Debian Importer	Fixing	VCID-7uh1-a5ng-rqch	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:47:26.778267+00:00	Debian Importer	Fixing	VCID-wbgc-tuj3-47by	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:13:44.888480+00:00	Debian Importer	Fixing	VCID-17rd-f1mq-kfgr	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:08:54.587060+00:00	Debian Importer	Fixing	VCID-jms5-sctw-mkc5	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:01:31.242998+00:00	Debian Importer	Fixing	VCID-7uh1-a5ng-rqch	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:32:23.433480+00:00	Debian Importer	Fixing	VCID-wbgc-tuj3-47by	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:10:22.705502+00:00	Debian Importer	Fixing	VCID-17rd-f1mq-kfgr	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:52:02.146322+00:00	Debian Importer	Fixing	VCID-7uh1-a5ng-rqch	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:52:02.122716+00:00	Debian Importer	Fixing	VCID-jms5-sctw-mkc5	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:52:02.098850+00:00	Debian Importer	Fixing	VCID-wbgc-tuj3-47by	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:52:02.074921+00:00	Debian Importer	Fixing	VCID-17rd-f1mq-kfgr	https://security-tracker.debian.org/tracker/data/json	38.1.0