CVE-2024-1726: A flaw was discovered in the RESTEasy Reactive implementation in Quarkus. Due to security checks for some JAX-RS endpoin
mediumvulnerability
security
Summary
CVE-2024-1726 is a flaw in RESTEasy Reactive (a framework for building web services in Quarkus) where security checks happen after the request data is processed, wasting resources. An attacker who knows the paths to POST, PUT, or PATCH endpoints can exploit this to cause a denial of service (DoS, making a service unavailable by overwhelming it with requests).
Vulnerability Details
CVSS Score
5.3(medium)
EPSS (30-day exploit probability)
EPSS: 0.0%
Classification
Attack SophisticationModerate
Taxonomy References
CWE (Weakness Type)
Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-1726
First tracked: February 15, 2026 at 08:43 PM
Classified by LLM (prompt v3) · confidence: 95%