漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Authentication Leak On Redirect With Reactor Netty HttpClient
Vulnerability Description
The HttpClient from Reactor Netty, versions 0.9.x prior to 0.9.5, and versions 0.8.x prior to 0.8.16, may be used incorrectly, leading to a credentials leak during a redirect to a different domain. In order for this to happen, the HttpClient must have been explicitly configured to follow redirects.
CVSS Information
N/A
Vulnerability Type
不充分的凭证保护机制
Vulnerability Title
Pivotal Software Reactor Netty HttpClient 安全漏洞
Vulnerability Description
Pivotal Software Reactor Netty是美国Pivotal Software公司的一款异步事件驱动的网络应用程序框架。 Pivotal Software Reactor Netty HttpClient 0.9.5之前的0.9.x版本和0.8.16之前的0.8.x版本中存在安全漏洞。攻击者可利用该漏洞获取凭证。
CVSS Information
N/A
Vulnerability Type
N/A