Security Advisory

CVE-2020-10688

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-27 18:45:41

Last updated 2024-08-04 11:06:11

Assigner redhat

State PUBLISHED

Description

A cross-site scripting (XSS) flaw was found in RESTEasy in versions before 3.11.1.Final and before 4.5.3.Final, where it did not properly handle URL encoding when the RESTEASY003870 exception occurs. An attacker could use this flaw to launch a reflected XSS attack.

← Browse all CVEs View on cve.org ↗