A flaw was found in Quarkus, where it does not properly sanitize artifacts created using the Gradle plugin, allowing certain build system information to remain. This flaw allows an attacker to access potentially sensitive information from the build system within the application.
References
Link | Resource |
---|---|
https://access.redhat.com/security/cve/CVE-2023-5720 | Vendor Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=2245700 | Issue Tracking Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2023-11-15T13:57:52.295Z
Updated: 2024-01-23T01:30:30.953Z
Reserved: 2023-10-23T16:39:58.066Z
Link: CVE-2023-5720
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-15T14:15:07.900
Modified: 2023-11-30T16:26:16.073
Link: CVE-2023-5720
JSON object: View
Redhat Information
No data.