Maven package

io.quarkus/quarkus-csrf-reactive

pkg:maven/io.quarkus/quarkus-csrf-reactive

Vulnerabilities (1)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2023-4853		—		< 2.16.11.Final	2.16.11.Final	Sep 20, 2023	A flaw was found in Quarkus where HTTP security policies are not sanitizing certain character permutations correctly when accepting requests, resulting in incorrect evaluation of permissions. This issue could allow an attacker to bypass the security policy altogether, resulting i

CVE-2023-4853Sep 20, 2023
affected < 2.16.11.Finalfixed 2.16.11.Final
A flaw was found in Quarkus where HTTP security policies are not sanitizing certain character permutations correctly when accepting requests, resulting in incorrect evaluation of permissions. This issue could allow an attacker to bypass the security policy altogether, resulting i