3 matches found
CVE-2022-31023
Play Framework is a web framework for Java and Scala. Verions prior to 2.8.16 are vulnerable to generation of error messages containing sensitive information. Play Framework, when run in dev mode, shows verbose errors for easy debugging, including an exception stack trace. Play does this by...
ba.sake:hepek-play_2.13 (>=0.5.0 <=0.9.0), be.objectify:deadbolt-java_2.13 (>=2.7.1 <=2.8.1) +308 more potentially affected by CVE-2022-31023 via com.typesafe.play:play_2.13 (>=2.7.3 <=2.8.15)
com.typesafe.play:play2.13 MAVEN version =2.7.3, =0.5.0, =2.7.1, =2.7.1, =0.5.0, =0.3.0, =0.3.0, =0.3.0, =0.3.0, =0.3.0, =0.3.0, =0.3.0, =0.3.0, =0.4.0, =0.4.0, =0.4.0, =0.5.1 and more Source cves: CVE-2022-31023 Source advisory: OSV:GHSA-P9P4-97G9-WCRH...
CVE-2022-31023 Dev error stack trace leaking into prod in Play Framework
Play Framework is a web framework for Java and Scala. Verions prior to 2.8.16 are vulnerable to generation of error messages containing sensitive information. Play Framework, when run in dev mode, shows verbose errors for easy debugging, including an exception stack trace. Play does this by...