CVE-2023-0482

EPSS 0.05% · P16 Updated Mar 19, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-0482

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

In RESTEasy the insecure File.createTempFile() is used in the DataSourceProvider, FileProvider and Mime4JWorkaround classes which creates temp files with insecure permissions that could be read by a local user.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

创建拥有不安全权限的临时文件

Source: NVD (National Vulnerability Database)

Vulnerability Title

Resteasy 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Red Hat Resteasy是美国红帽（Red Hat）公司的一款JAX-RS（一种Java编程语言API规范）实现。 Resteasy 存在安全漏洞，该漏洞源于允许用户创建不安全的临时文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	RESTEasy	Fixed in RESTEasy 4.7.8.Final	-

II. Public POCs for CVE-2023-0482

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-0482

请登录查看更多情报信息。

Same Patch Batch · n/a · 2023-02-17 · 35 CVEs total

CVE-2023-24078		Real Time Logic FuguHub 代码注入漏洞
CVE-2022-40021		QVidium Technologies Amino A140 命令注入漏洞
CVE-2022-40032		Simple Task Managing System SQL注入漏洞
CVE-2022-40347		Intern Record System SQL注入漏洞
CVE-2022-45701		ARRIS TG2482A 安全漏洞
CVE-2022-48115		Jspreadsheet CE 跨站脚本漏洞
CVE-2023-23007		EARCLINK ESPCMS SQL注入漏洞
CVE-2023-23064		TOTOLINK A720R 安全漏洞
CVE-2023-23279		Canteen Management System SQL注入漏洞
CVE-2022-32972		Infoblox BloxOne Endpoint 代码问题漏洞
CVE-2023-24219		Luckyframe SQL注入漏洞
CVE-2023-24220		LuckyFrame SQL注入漏洞
CVE-2023-24221		LuckyFrame SQL注入漏洞
CVE-2023-24329		Python 输入验证错误漏洞
CVE-2023-24369		UJCMS 跨站脚本漏洞
CVE-2023-24769		changedetection.io 跨站脚本漏洞
CVE-2023-24785		PeaZip 安全漏洞
CVE-2021-33926		Plone 代码问题漏洞
CVE-2020-29168		Online Doctor Appointment Booking System SQL注入漏洞
CVE-2021-3172		PHPFusion 安全漏洞

Showing top 20 of 35 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: RESTEasy

Same vendor: n/a

Same weakness: CWE-378

V. Comments for CVE-2023-0482

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-0482

I. Basic Information for CVE-2023-0482

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-0482

III. Intelligence Information for CVE-2023-0482

Same Patch Batch · n/a · 2023-02-17 · 35 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-0482

Leave a comment