| |
Vulnerability CVE-2022-22947
Published: 2022-03-03
Description: |
In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured. A remote attacker could make a maliciously crafted request that could allow arbitrary remote execution on the remote host. |
See advisories in our WLB2 database: | Topic | Author | Date |
High |
| Carlos E. Vieira | 07.03.2022 |
References: |
https://tanzu.vmware.com/security/cve-2022-22947
|
|
|
closedb();
?>
Copyright 2024, cxsecurity.com
|
|
|