CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-22044

In Spring Cloud OpenFeign 3.0.0 to 3.0.4, 2.2.0.RELEASE to 2.2.9.RELEASE, and older unsupported versions, applications using type-level `@RequestMapping`annotations over Feign client interfaces, can be involuntarily exposing endpoints corresponding to `@RequestMapping`-annotated interface methods.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.4%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://tanzu.vmware.com/security/cve-2021-22044
https://tanzu.vmware.com/security/cve-2021-22044

Products affected by CVE-2021-22044

Vmware » Spring Cloud Openfeign » Version: Any

cpe:2.3:a:vmware:spring_cloud_openfeign:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-22044

Products

Pricing

Contact Us