VYPR

forward-auth plugin

by Apache

CVEs (1)

  • CVE-2024-32638MedMay 2, 2024
    risk 0.41cvss 6.3epss 0.01

    Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in Apache APISIX when using `forward-auth` plugin.This issue affects Apache APISIX: from 3.8.0, 3.9.0. Users are recommended to upgrade to version 3.8.1, 3.9.1 or higher, which fixes the…