CVE-2021-22051 is a vulnerability in VMware Spring Cloud Gateway
Published on November 8, 2021
Applications using Spring Cloud Gateway are vulnerable to specifically crafted requests that could make an extra request on downstream services. Users of affected versions should apply the following mitigation: 3.0.x users should upgrade to 3.0.5+, 2.2.x users should upgrade to 2.2.10.RELEASE or newer.
Products Associated with CVE-2021-22051
Want to know whenever a new CVE is published for VMware Spring Cloud Gateway? stack.watch will email you.
Exploit Probability
EPSS
0.14%
Percentile
33.13%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.