Search for packages
| purl | pkg:maven/org.jboss.resteasy/resteasy-client@4.0.0 |
| Tags | Ghost |
| Next non-vulnerable version | 4.7.0.Final |
| Latest non-vulnerable version | 4.7.0.Final |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-54ek-p545-k3fj
Aliases: CVE-2020-25633 GHSA-hr32-mgpm-qf2f |
Generation of Error Message Containing Sensitive Information in RESTEasy client A flaw was found in RESTEasy client in all versions of RESTEasy up to 4.5.6.Final. It may allow client users to obtain the server's potentially sensitive information when the server got WebApplicationException from the RESTEasy client call. The highest threat from this vulnerability is to data confidentiality. |
Affected by 2 other vulnerabilities. |
|
VCID-aedf-8vvz-37cp
Aliases: CVE-2020-1695 GHSA-63cq-ppq8-cw6g |
Improper Input Validation in RESTEasy A flaw was found in all resteasy 3.x.x versions prior to 3.12.0.Final and all resteasy 4.x.x versions prior to 4.6.0.Final, where an improper input validation results in returning an illegal header that integrates into the server's response. This flaw may result in an injection, which leads to unexpected behavior when the HTTP response is constructed. |
Affected by 1 other vulnerability. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-03T21:26:46.012030+00:00 | GitLab Importer | Affected by | VCID-aedf-8vvz-37cp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.resteasy/resteasy-client/CVE-2020-1695.yml | 38.1.0 |
| 2026-04-02T16:57:25.084292+00:00 | GHSA Importer | Affected by | VCID-54ek-p545-k3fj | https://github.com/advisories/GHSA-hr32-mgpm-qf2f | 38.1.0 |
| 2026-04-01T16:02:21.735118+00:00 | GHSA Importer | Affected by | VCID-aedf-8vvz-37cp | https://github.com/advisories/GHSA-63cq-ppq8-cw6g | 38.0.0 |