Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.jboss.resteasy/resteasy-core@4.0.0.Beta8
purl pkg:maven/org.jboss.resteasy/resteasy-core@4.0.0.Beta8
Next non-vulnerable version 4.7.8.Final
Latest non-vulnerable version 6.2.3.Final
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-dww4-f31f-h7az
Aliases:
CVE-2021-20293
GHSA-5h26-c766-g93v
A reflected Cross-Site Scripting (XSS) flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final, where it did not properly handle URL encoding when calling @javax.ws.rs.PathParam without any @Produces MediaType. This flaw allows an attacker to launch a reflected XSS attack. The highest threat from this vulnerability is to data confidentiality and integrity.
4.6.1.Alpha1
Affected by 2 other vulnerabilities.
4.6.1
Affected by 0 other vulnerabilities.
VCID-etyq-9yys-tkdf
Aliases:
CVE-2023-0482
GHSA-2c6g-pfx3-w7h8
GHSA-jrmh-v64j-mjm9
Insecure Temporary File in RESTEasy In RESTEasy the insecure File.createTempFile() is used in the DataSourceProvider, FileProvider and Mime4JWorkaround classes which creates temp files with insecure permissions that could be read by a local user.
4.7.8.Final
Affected by 0 other vulnerabilities.
5.0.6.Final
Affected by 0 other vulnerabilities.
6.2.3.Final
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T22:22:24.538633+00:00 GitLab Importer Affected by VCID-etyq-9yys-tkdf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.resteasy/resteasy-core/GHSA-jrmh-v64j-mjm9.yml 38.4.0
2026-04-16T21:25:59.744614+00:00 GitLab Importer Affected by VCID-dww4-f31f-h7az https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.resteasy/resteasy-core/CVE-2021-20293.yml 38.4.0
2026-04-11T23:40:32.231723+00:00 GitLab Importer Affected by VCID-etyq-9yys-tkdf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.resteasy/resteasy-core/GHSA-jrmh-v64j-mjm9.yml 38.3.0
2026-04-11T22:38:49.496989+00:00 GitLab Importer Affected by VCID-dww4-f31f-h7az https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.resteasy/resteasy-core/CVE-2021-20293.yml 38.3.0
2026-04-02T23:44:35.215467+00:00 GitLab Importer Affected by VCID-etyq-9yys-tkdf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.resteasy/resteasy-core/GHSA-jrmh-v64j-mjm9.yml 38.1.0
2026-04-02T22:49:28.179310+00:00 GitLab Importer Affected by VCID-dww4-f31f-h7az https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.resteasy/resteasy-core/CVE-2021-20293.yml 38.1.0
2026-04-01T18:07:35.780586+00:00 GitLab Importer Affected by VCID-etyq-9yys-tkdf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.resteasy/resteasy-core/GHSA-jrmh-v64j-mjm9.yml 38.0.0
2026-04-01T17:07:22.844118+00:00 GitLab Importer Affected by VCID-dww4-f31f-h7az https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.resteasy/resteasy-core/CVE-2021-20293.yml 38.0.0