Description
A flaw was found in Quarkus, where it does not properly sanitize artifacts created using the Gradle plugin, allowing certain build system information to remain. This flaw allows an attacker to access potentially sensitive information from the build system within the application.
Remediation
References
https://access.redhat.com/security/cve/CVE-2023-5720
https://bugzilla.redhat.com/show_bug.cgi?id=2245700
Related Vulnerabilities
CVE-2020-13692 Vulnerability in maven package org.postgresql:postgresql
CVE-2018-1000184 Vulnerability in maven package com.coravy.hudson.plugins.github:github
CVE-2021-21120 Vulnerability in npm package electron
CVE-2023-45143 Vulnerability in npm package undici
CVE-2017-12629 Vulnerability in maven package org.apache.lucene:lucene-queryparser