Vulnerabilities > Quarkus

DATE	CVE	VULNERABILITY TITLE	RISK
2020-06-04	CVE-2020-13692	XXE vulnerability in multiple products PostgreSQL JDBC Driver (aka PgJDBC) before 42.2.13 allows XXE. network high complexity postgresql quarkus netapp fedoraproject debian CWE-611	7.7
2020-05-13	CVE-2020-1714	Improper Input Validation vulnerability in multiple products A flaw was found in Keycloak before version 11.0.0, where the code base contains usages of ObjectInputStream without type checks. network low complexity redhat quarkus CWE-20	8.8
2020-05-06	CVE-2020-10693	Improper Input Validation vulnerability in multiple products A flaw was found in Hibernate Validator version 6.1.2.Final. network low complexity redhat ibm quarkus oracle CWE-20	5.3
2020-04-06	CVE-2020-1728	Improper Restriction of Rendered UI Layers or Frames vulnerability in multiple products A vulnerability was found in all versions of Keycloak where, the pages on the Admin Console area of the application are completely missing general HTTP security headers in HTTP-responses. network low complexity redhat quarkus CWE-1021	5.4
2019-12-12	CVE-2017-18640	XML Entity Expansion vulnerability in multiple products The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564. network low complexity snakeyaml-project fedoraproject quarkus oracle CWE-776	7.5

Vulnerabilities > Quarkus {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Quarkus"}]}