Skip to main content

Krakend

1 CVEs product

Monthly

CVE-2022-1561 MEDIUM This Month

Lura and KrakenD-CE versions older than v2.0.2 and KrakenD-EE versions older than v2.0.0 do not sanitize URL parameters correctly, allowing a malicious user to alter the backend URL defined for a. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Krakend Lura
NVD
CVSS 3.1
4.3
EPSS
0.5%
EPSS 1% CVSS 4.3
MEDIUM This Month

Lura and KrakenD-CE versions older than v2.0.2 and KrakenD-EE versions older than v2.0.0 do not sanitize URL parameters correctly, allowing a malicious user to alter the backend URL defined for a. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Krakend Lura
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy