Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-57q5-x8jf-g7h8

GitHub Security Advisory

Inconsistent Interpretation of HTTP Requests in Red Hat JBoss EAP

✓ GitHub Reviewed HIGH Has CVE
View on GitHub

Advisory Details

Red Hat JBoss EAP version 3.0.7.Final until 3.0.25.Final, 3.5.0.CR1, and 4.0.0.Beta1 is vulnerable to a server-side cache poisoning or CORS requests in the JAX-RS component resulting in a moderate impact.

Affected Packages

Maven org.jboss.resteasy:resteasy-jaxrs
Affected versions: 3.0.7.Final (fixed in 3.0.25.Final)
Maven org.jboss.resteasy:resteasy-jaxrs
Affected versions: 3.1.4.Final (fixed in 3.5.0.CR1)

Related CVEs

CVE-2017-7561

Key Information

GHSA ID
GHSA-57q5-x8jf-g7h8
Published
May 13, 2022 1:47 AM
Last Modified
January 15, 2025 3:05 PM
CVSS Score
7.5 /10
Primary Ecosystem
Maven
Primary Package
org.jboss.resteasy:resteasy-jaxrs
GitHub Reviewed
✓ Yes

Dataset

Last updated: November 26, 2025 6:30 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.