Org.jboss.resteasy:resteasy-jaxrs
This hub aggregates every CVE we track for Org.jboss.resteasy:resteasy-jaxrs, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
3
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
HIGH2MEDIUM1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 3 most recently published vulnerabilities affecting Org.jboss.resteasy:resteasy-jaxrs.
- CVE-2017-7561Red Hat JBoss EAP version 3.0.7 through before 4.0.0.Beta1 is vulnerable to a server-side cache poisoning or CORS requests in the JAX-RS component resulting in a moderate impact.7.5
- CVE-2016-6346RESTEasy enables GZIPInterceptor, which allows remote attackers to cause a denial of service via unspecified vectors.7.5
- CVE-2014-7839DocumentProvider in RESTEasy 2.3.7 and 3.0.9 does not configure the (1) external-general-entities or (2) external-parameter-entities features, which allows remote attackers to conduct XML external ...6.4
Product normalization is registry-driven with AI assist and human review. How it works