CVE-2023-0833 Information

Description

A flaw was found in Red Hat’s AMQ-Streams which ships a version of the OKHttp component with an information disclosure flaw via an exception triggered by a header containing an illegal value. This issue could allow an authenticated attacker to access information outside of their regular permissions.

Reference

https://access.redhat.com/errata/RHSA-2023:1241 https://access.redhat.com/security/cve/CVE-2023-0833 https://access.redhat.com/errata/RHSA-2023:3223 https://bugzilla.redhat.com/show_bug.cgi?id=2169845 https://github.com/square/okhttp/issues/6738