Lucene search
ApacheCVELIST:CVE-2022-23944HistoryJan 25, 2022 - 1:00 p.m.
CVE-2022-23944 Apache ShenYu 2.4.1 Improper access control
2022-01-2513:00:24
CWE-862
apache
www.cve.org
1
User can access /plugin api without authentication. This issue affected Apache ShenYu 2.4.0 and 2.4.1.
CNA Affected
[
{
"product": "Apache ShenYu (incubating) ",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "2.4.2",
"status": "affected",
"version": "Apache ShenYu (incubating)",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2022-23944
2022-01-25 13:15:08
veracode
veracode
Insecure Access Control
2022-01-26 08:17:21
osv
osv
Missing authentication in ShenYu
2022-01-28 22:13:44
CVE-2022-23944
2022-01-25 13:15:08
cve
cve
CVE-2022-23944
2022-01-25 13:15:08
cnvd
cnvd
Apache ShenYu Access Control Error Vulnerability
2022-01-27 00:00:00
nuclei
nuclei
Apache ShenYu Admin Unauth Access
2022-01-27 10:29:26
github
github
Missing authentication in ShenYu
2022-01-28 22:13:44
prion
prion
Authentication flaw
2022-01-25 13:15:00