VYPR

Maven package

org.springframework.cloud/spring-cloud-gateway-server

pkg:maven/org.springframework.cloud/spring-cloud-gateway-server

Vulnerabilities (2)

  • CVE-2025-41253HigOct 16, 2025
    affected >= 4.3.0, < 4.3.2fixed 4.3.2

    The following versions of Spring Cloud Gateway Server Webflux may be vulnerable to the ability to expose environment variables and system properties to attackers. An application should be considered vulnerable when all the following are true: * The application is using Sprin

  • CVE-2025-41235HigMay 30, 2025
    affected >= 4.2.0, < 4.2.3fixed 4.2.3

    Spring Cloud Gateway Server forwards the X-Forwarded-For and Forwarded headers from untrusted proxies.