← back
CVE-2021-22051

CVE-2021-22051

EPSS 0.7%
Applications using Spring Cloud Gateway are vulnerable to specifically crafted requests that could make an extra request on downstream services. Users of affected versions should apply the following mitigation: 3.0.x users should upgrade to 3.0.5+, 2.2.x users should upgrade to 2.2.10.RELEASE or newer.
Affected products
n/a · Spring Cloud Gateway

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://tanzu.vmware.com/security/cve-2021-22051