Critical severityNVD Advisory· Published Aug 31, 2022· Updated Aug 3, 2024
CVE-2022-2466
CVE-2022-2466
Description
It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
io.quarkus:quarkus-core-parentMaven | >= 2.10.0, < 2.10.4 | 2.10.4 |
Affected products
2Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-mwhw-6p27-4crcghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-2466ghsaADVISORY
- github.com/quarkusio/quarkus/issues/26748ghsax_refsource_MISCWEB
- github.com/quarkusio/quarkus/releases/tag/2.10.4.FinalghsaWEB
News mentions
0No linked articles in our index yet.