Maven package
org.springframework.cloud/spring-cloud-gateway-server-mvc
pkg:maven/org.springframework.cloud/spring-cloud-gateway-server-mvc
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-41235 | Hig | 8.6 | >= 4.1.7, < 4.2.3 | 4.2.3 | May 30, 2025 | Spring Cloud Gateway Server forwards the X-Forwarded-For and Forwarded headers from untrusted proxies. |
- affected >= 4.1.7, < 4.2.3fixed 4.2.3
Spring Cloud Gateway Server forwards the X-Forwarded-For and Forwarded headers from untrusted proxies.