EPSS
Percentile
59.7%
reactor-netty is vulnerable to information disclosure. Authentication/Authorization headers are passed through redirects, allowing remote unauthenticated malicious user to gain access to credentials for a different server than they have access to.
pivotal.io/security/cve-2019-11284