VYPR
High severityNVD Advisory· Published Oct 28, 2021· Updated Aug 3, 2024

CVE-2021-22044

CVE-2021-22044

Description

In Spring Cloud OpenFeign 3.0.0 to 3.0.4, 2.2.0.RELEASE to 2.2.9.RELEASE, and older unsupported versions, applications using type-level @RequestMappingannotations over Feign client interfaces, can be involuntarily exposing endpoints corresponding to @RequestMapping-annotated interface methods.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.springframework.cloud:spring-cloud-openfeign-coreMaven
>= 3.0.0, < 3.0.53.0.5
org.springframework.cloud:spring-cloud-openfeign-coreMaven
>= 2.2.0, < 2.2.102.2.10

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.