CVE-2021-22113 – Applications using the Sensitive Headers; function …

23 February 2021

Vuln ID: CVE-2021-22113

Published: 2021-02-23 17:15:13Z

Description: Applications using the Sensitive Headers functionality in Spring Cloud Netflix Zuul 2.2.6.RELEASE and below may be vulnerable to bypassing the Sensitive Headers restriction when executing requests with specially constructed URLs. Applications that use Spring Security’s StrictHttpFirewall (enabled by default for all URLs) are not affected by the vulnerability, as they reject requests that allow bypassing.

Source: NVD.NIST.GOV

Date:

23 February 2021

Categorie(s):

NVD

Tag(s):

NVD

AI sparks increasing cyber concerns for execs amid growing adoption26 April 2024
More details on rural water system breach sought by legislators26 April 2024
Updated CISA exploited vulnerabilties catalog includes Windows print spooler bug26 April 2024
Severe Flaws Disclosed in Brocade SANnav SAN Management Software26 April 2024
Microsoft credentials targeted by phishing campaign using Autodesk Drive26 April 2024