EPSS
Percentile
97.3%
shenyu has insecure access control. The vulnerability exists due to a lack of validation of the user access via the /plugin api allowing an attacker to access the system without authentication.
www.openwall.com/lists/oss-security/2022/01/25/15
www.openwall.com/lists/oss-security/2022/01/25/5
www.openwall.com/lists/oss-security/2022/01/26/2
github.com/apache/incubator-shenyu/commit/9a02215013037e1cc8cd41f216164628a9e9e28f
lists.apache.org/thread/dbrjnnlrf80dr0f92k5r2ysfvf1kr67y