CVE-2022-4147 (quarkus) | allinfosecnews.com

Dec. 6, 2022, 7:15 p.m. |

National Vulnerability Database web.nvd.nist.gov

Quarkus CORS filter allows simple GET and POST requests with invalid Origin to proceed. Simple GET or POST requests made with XMLHttpRequest are the ones which have no event listeners registered on the object returned by the XMLHttpRequest upload property and have no ReadableStream object used in the request.

More from web.nvd.nist.gov / National Vulnerability Database

CVE-2023-45955 (lightstrip_firmware) 6 months, 2 weeks ago | web.nvd.nist.gov

attackers cve denial of service issue +1

CVE-2023-40101 (android) 6 months, 2 weeks ago | web.nvd.nist.gov

android check collapse cve +7

CVE-2023-21377 (android) 6 months, 2 weeks ago | web.nvd.nist.gov

android bypass cve disclosure +8

CVE-2023-21380 (android) 6 months, 2 weeks ago | web.nvd.nist.gov

android bluetooth buffer buffer overflow +9

CVE-2023-21382 (android) 6 months, 2 weeks ago | web.nvd.nist.gov

access android check cve +11

CVE-2023-21381 (android) 6 months, 2 weeks ago | web.nvd.nist.gov

android arbitrary code code code execution +10

CVE-2023-21385 (android) 6 months, 2 weeks ago | web.nvd.nist.gov

android corruption cve disclosure +7

CVE-2023-21387 (android) 6 months, 2 weeks ago | web.nvd.nist.gov

android backup bypass cve +11

CVE-2023-21389 (android) 6 months, 2 weeks ago | web.nvd.nist.gov

android bypass check cve +10

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Senior Product Delivery Associate - Cybersecurity | CyberOps

@ JPMorgan Chase & Co. | NY, United States

View on infosec-jobs.com

Security Ops Infrastructure Engineer (Remote US):

@ RingCentral | Remote, USA

View on infosec-jobs.com

SOC Analyst-1

@ NTT DATA | Bengaluru, India

View on infosec-jobs.com