CVE-2022-23945

CVE-2022-23945: Apache ShenYu missing authentication allows gateway registration

Vendor Apache Software Foundation
Product Apache ShenYu (incubating)
Weakness CWE-862 · Missing authorization
Published January 25, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

Description

Missing authentication on ShenYu Admin when register by HTTP. This issue affected Apache ShenYu 2.4.0 and 2.4.1.

Key dates

Disclosure timeline

January 25, 2022 CVE published
August 3, 2024 Record updated