pkg:maven/io.vertx/vertx-web
Type
maven
Namespace
io.vertx
Name
vertx-web
Known advisories, vulnerabilities and fixes for io.vertx/vertx-web package.
Critical
2
High
2
Moderate
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | >= 4.0.0, < 4.3.8 |
CVE-2023-24815
|
 MAVEN:GHSA-53JX-VVF9-4X38
|
StaticHandler disclosure of classpath resources on Windows when mounted on a wildcard route | moderate |
2023-02-10T03:27:58
(19 months ago) |
|
| Fixed | = 4.3.8 |
CVE-2023-24815
|
MAVEN:GHSA-53JX-VVF9-4X38
|
StaticHandler disclosure of classpath resources on Windows when mounted on a wildcard route | moderate |
2023-02-10T03:27:58
(19 months ago) |
|
| Affected | = 4.0.0-milestone4 = 4.0.0-milestone3 = 4.0.0-milestone2 = 4.0.0-milestone1 |
CVE-2020-35217
|
MAVEN:GHSA-9Q69-G5GC-9FGF
|
Cross-Site Request Forgery in Vert.x-Web framework | high |
2021-04-22T16:16:18
(3 years ago) |
|
| Fixed | = 4.0.0-milestone5 |
CVE-2020-35217
|
MAVEN:GHSA-9Q69-G5GC-9FGF
|
Cross-Site Request Forgery in Vert.x-Web framework | high |
2021-04-22T16:16:18
(3 years ago) |
|
| Affected | >= 3.0.0, < 3.5.4 |
CVE-2018-12542
|
MAVEN:GHSA-H39X-M55C-V55H
|
Eclipse Vert.x does not properly neutralize '' (forward slashes) sequences that can resolve to an external location | critical |
2018-10-17T16:20:45
(6 years ago) |
|
| Fixed | = 3.5.4 |
CVE-2018-12542
|
MAVEN:GHSA-H39X-M55C-V55H
|
Eclipse Vert.x does not properly neutralize '' (forward slashes) sequences that can resolve to an external location | critical |
2018-10-17T16:20:45
(6 years ago) |
|
| Affected | >= 3.0.0, < 3.5.3 |
CVE-2018-12540
|
MAVEN:GHSA-RVGG-F8QM-6H7J
|
High severity vulnerability that affects io.vertx:vertx-web | high |
2018-10-17T16:19:43
(6 years ago) |
|
| Fixed | = 3.5.3 |
CVE-2018-12540
|
MAVEN:GHSA-RVGG-F8QM-6H7J
|
High severity vulnerability that affects io.vertx:vertx-web | high |
2018-10-17T16:19:43
(6 years ago) |
|
| Affected | >= 3.0.0, < 3.9.4 |
CVE-2019-17640
|
MAVEN:GHSA-VJW7-6GFQ-6WF5
|
Path Traversal in Eclipse Vert | critical |
2022-02-10T20:28:57
(2 years ago) |
|
| Fixed | = 3.9.4 |
CVE-2019-17640
|
MAVEN:GHSA-VJW7-6GFQ-6WF5
|
Path Traversal in Eclipse Vert | critical |
2022-02-10T20:28:57
(2 years ago) |