← voltar
CVE-2022-23223

Apache ShenYu Password leakage

EPSS 4.3%CWE-522
On Apache ShenYu versions 2.4.0 and 2.4.1, and endpoint existed that disclosed the passwords of all users. Users are recommended to upgrade to version 2.4.2 or later.
Produtos afetados
Apache Software Foundation · Apache ShenYu (incubating)

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://lists.apache.org/thread/q2gg6ny6lpkph7nkrvjzqdvqpm805v8shttp://www.openwall.com/lists/oss-security/2022/01/25/7http://www.openwall.com/lists/oss-security/2022/01/26/4