CVE-2021-45029

CVE-2021-45029: Apache ShenYu 2.4.1 Groovy Code Injection & SpEL Injection

Vendor Apache Software Foundation
Product Apache ShenYu (incubating)
Weakness CWE-94 · Code injection
Published January 25, 2022
Last update August 4, 2024
View on NVD All CVEs

CVSS base score

What the vulnerability does

Description

Groovy Code Injection & SpEL Injection which lead to Remote Code Execution. This issue affected Apache ShenYu 2.4.0 and 2.4.1.

Key dates

Disclosure timeline

January 25, 2022 CVE published
August 4, 2024 Record updated