← volver
CVE-2023-40788

CVE-2023-40788

EPSS 0.6%
SpringBlade <=V3.6.0 is vulnerable to Incorrect Access Control due to incorrect configuration in the default gateway resulting in unauthorized access to error logs
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://gist.github.com/kaliwin/89276ec7e97f9529c989bd77706c29c7https://github.com/chillzhuang/SpringBladehttps://github.com/chillzhuang/SpringBlade/blob/master/blade-gateway/src/main/java/org/springblade/gateway/provider/AuthProvider.java