Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Apache ShenYu Admin ultra vires
Vulnerability Description
Improper Privilege Management vulnerability in Apache Software Foundation Apache ShenYu. ShenYu Admin allows low-privilege low-level administrators create users with higher privileges than their own. This issue affects Apache ShenYu: 2.5.0. Upgrade to Apache ShenYu 2.5.1 or apply patch https://github.com/apache/shenyu/pull/3958 https://github.com/apache/shenyu/pull/3958 .
CVSS Information
N/A
Vulnerability Type
特权管理不恰当
Vulnerability Title
Apache ShenYu 安全漏洞
Vulnerability Description
Apache ShenYu是美国阿帕奇(Apache)基金会的一个异步的,高性能的,跨语言的,响应式的 API 网关。 Apache ShenYu 2.5.1之前版本存在安全漏洞,该漏洞源于不当权限管理漏洞,允许低权限的低级管理员创建比自己权限更高的用户。
CVSS Information
N/A
Vulnerability Type
N/A