CVE-2020-25633: resteasy-client: potential sensitive information leakage in JAX-RS RESTEasy Client's WebApplicationException handling ------------------------------------------------------------------------------------------------------------------------------------- Key: WFLY-13930 URL: https://issues.redhat.com/browse/WFLY-13930 Project: WildFly Issue Type: Bug Components: REST Affects Versions: 20.0.1.Final, 21.0.0.Beta1 Reporter: Radoslav Ivanov Assignee: Alessio Soldano Priority: Major Fix For: 22.0.0.Final CVE-2020-25633: A flaw was found in RESTEasy client in all versions of RESTEasy up to 4.5.6.Final. It may allow client users to obtain the server's potentially sensitive information when the server got WebApplicationException from the RESTEasy client call. The highest threat from this vulnerability is to data confidentiality. Please update to the latest RESTEasy