CVE-2012-0818

medium

Published 2012-11-23 · Modified 2024-12-03

CVSS v3

—

CVSS v2

5.0

VIR risk

5.0

Description

Exposure of Sensitive Information to an Unauthorized Actor in RESTEasy

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — https://issues.jboss.org/browse/RESTEASY-637

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/50084

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/47832

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/47818

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://rhn.redhat.com/errata/RHSA-2012-1125.html

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://rhn.redhat.com/errata/RHSA-2012-1059.html

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://rhn.redhat.com/errata/RHSA-2012-1058.html

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://rhn.redhat.com/errata/RHSA-2012-1057.html

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://rhn.redhat.com/errata/RHSA-2012-1056.html

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://rhn.redhat.com/errata/RHSA-2012-0519.html

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://rhn.redhat.com/errata/RHSA-2012-0441.html

Ecosystem	Package	Vulnerable	Fixed
Maven	org.jboss.resteasy:resteasy-client	`<2.3.1`	`2.3.1`

Vendor	Product	Versions
redhat	resteasy	`{"endIncluding":"2.3.0"}`
redhat	resteasy	`1.0.0`
redhat	resteasy	`1.0.1`
redhat	resteasy	`1.0.2`
redhat	resteasy	`1.1`
redhat	resteasy	`1.2`
redhat	resteasy	`2.0.0`
redhat	resteasy	`2.0.1`
redhat	resteasy	`2.1.0`
redhat	resteasy	`2.2.0`
redhat	resteasy	`2.2.1`
redhat	resteasy	`2.2.2`
redhat	resteasy	`2.2.3`

CWE-200

Verify integrity in audit chain (admin only). AS-IS.