VDB
CVE-2020-25724
CVE-2020-25724
REJECTED
A flaw was found in RESTEasy, where an incorrect response to an HTTP request is provided. This flaw allows an attacker to gain access to privileged information. The highest threat from this vulnerability is to confidentiality and integrity. Versions before resteasy 2.0.0.Alpha3 are affected.
EPSS 0.13% · 32.3th percentile
Risk Scores
EPSS Score
0.13%
32.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:20.04:LTS | resteasy3.0 | 0 |
| Ubuntu:20.04:LTS | resteasy | 0 |
| Ubuntu:24.04:LTS | resteasy | 0 |
| Ubuntu:24.04:LTS | resteasy3.0 | 0 |
| Ubuntu:22.04:LTS | resteasy | 0 |
| Ubuntu:22.04:LTS | resteasy3.0 | 0, 3.0.26-2 |
Exploit Intelligence
Timeline
- May 26, 2021 CVE Published
- May 27, 2021 EPSS Score
- Jun 4, 2021 CVE Updated
- Jul 29, 2021 EPSS Score
- Sep 28, 2021 EPSS Score
- Nov 29, 2021 EPSS Score
- Jan 29, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 31, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 31, 2022 EPSS Score
- Aug 2, 2022 EPSS Score
References
- https://ubuntu.com/security/CVE-2020-25724 third-party-advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1899354 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2020-25724 third-party-advisory