CVE-2021-3914

Summary

It was found that the smallrye health metrics UI component did not properly sanitize some user inputs. An attacker could use this flaw to conduct cross-site scripting attacks.

Affected Software

VendorProductVersion RangeStatus
n/asmallrye-healthNot-Knownaffected

Weaknesses

  • CWE-79: CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

ADP Enrichment

CVE Program Container

Additional References

References