← back
CVE-2023-40788

CVE-2023-40788

EPSS 0.6%
SpringBlade <=V3.6.0 is vulnerable to Incorrect Access Control due to incorrect configuration in the default gateway resulting in unauthorized access to error logs
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://gist.github.com/kaliwin/89276ec7e97f9529c989bd77706c29c7https://github.com/chillzhuang/SpringBladehttps://github.com/chillzhuang/SpringBlade/blob/master/blade-gateway/src/main/java/org/springblade/gateway/provider/AuthProvider.java