Apache ShenYu 2.4.0 and 2.4.1 Password Disclosure Vulnerability
CVE-2022-23223 · HIGH Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
On Apache ShenYu versions 2.4.0 and 2.4.1, and endpoint existed that disclosed the passwords of all users. Users are recommended to upgrade to version 2.4.2 or later.
Learn more about our Cis Benchmark Audit For Apache Http Server.