Lucene search
China National Vulnerability DatabaseCNVD-2022-14708HistoryJan 27, 2022 - 12:00 a.m.
Apache ShenYu Access Control Error Vulnerability
2022-01-2700:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.257 Low
EPSS
Percentile
96.7%
Apache ShenYu is an asynchronous, high-performance, cross-language, responsive API gateway. an access control error vulnerability exists in Apache ShenYu versions 2.4.0 and 2.4.1. An attacker could exploit this vulnerability to access the /plugin api without authentication, compromising system security.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache apache shenyu | eq | 2.4.0 | |
| apache apache shenyu | eq | 2.4.1 |
Related
veracode
veracode
Insecure Access Control
2022-01-26 08:17:21
osv
osv
Missing authentication in ShenYu
2022-01-28 22:13:44
CVE-2022-23944
2022-01-25 13:15:08
cve
cve
CVE-2022-23944
2022-01-25 13:15:08
cvelist
cvelist
CVE-2022-23944 Apache ShenYu 2.4.1 Improper access control
2022-01-25 13:00:24
nvd
nvd
CVE-2022-23944
2022-01-25 13:15:08
nuclei
nuclei
Apache ShenYu Admin Unauth Access
2022-01-27 10:29:26
github
github
Missing authentication in ShenYu
2022-01-28 22:13:44
prion
prion
Authentication flaw
2022-01-25 13:15:00