CVE-2022-31684

CVE-2022-31684

Reactor Netty HTTP Server, in versions 1.0.11 – 1.0.23, may log request headers in some cases of invalid HTTP requests. The logged headers may reveal valid access tokens to those with access to server logs. This may affect only invalid HTTP requests where logging at WARN level is enabled.

Source: CVE-2022-31684

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다