Vulnerability CVE-2022-42735
Published: 2023-02-15

Description:
Improper Privilege Management vulnerability in Apache Software Foundation Apache ShenYu. ShenYu Admin allows low-privilege low-level administrators create users with higher privileges than their own. This issue affects Apache ShenYu: 2.5.0. Upgrade to Apache ShenYu 2.5.1 or apply patch https://github.com/apache/shenyu/pull/3958 https://github.com/apache/shenyu/pull/3958 .

Type:

CWE-269

 (Improper Privilege Management)

 References:
https://lists.apache.org/thread/2k8764jmckmc19qc8x51nlnngq71pcf7
Copyright 2024, cxsecurity.com

 

Back to Top