VYPR

Maven package

io.quarkus/quarkus-core

pkg:maven/io.quarkus/quarkus-core

Vulnerabilities (2)

  • CVE-2024-2700HigApr 4, 2024
    affected >= 3.9.0.CR1, < 3.9.2fixed 3.9.2

    A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, therefore, running the resulting application inherits the values captured at build time. Some local environment variabl

  • CVE-2023-2974Jul 4, 2023
    affected < 2.16.8.Finalfixed 2.16.8.Final

    A vulnerability was found in quarkus-core. This vulnerability occurs because the TLS protocol configured with quarkus.http.ssl.protocols is not enforced, and the client can force the selection of the weaker supported TLS protocol.