Apache ShenYu is an asynchronous, high-performance, cross-language, responsive API gateway from the Apache Foundation.Apache ShenYu in versions 2.4.0 and 2.4.1 contains an information disclosure vulnerability that stems from a configuration or other error in the operation of the network system or product. An attacker could use this vulnerability to see the user’s password in the HTTP response.