Description
A flaw was found in RESTEasy client in all versions of RESTEasy up to 4.5.6.Final. It may allow client users to obtain the server's potentially sensitive information when the server got WebApplicationException from the RESTEasy client call. The highest threat from this vulnerability is to data confidentiality.
Remediation
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25633
Related Vulnerabilities
CVE-2019-17573 Vulnerability in maven package org.apache.cxf:cxf-rt-transports-http
CVE-2020-1914 Vulnerability in npm package hermes-engine
CVE-2021-22096 Vulnerability in maven package org.springframework:spring-webflux
CVE-2018-1000614 Vulnerability in maven package org.onosproject:onos-netconf-provider-alarm
CVE-2023-29511 Vulnerability in maven package org.xwiki.platform:xwiki-platform-administration-ui