Build the apps that make the world run. Join us at SpringOne in San Francisco, Dec 6–8. >

Spring Cloud Gateway CVE reports published

Two vulnerabilities in Spring Cloud Gateway have been identified and fixed. Versions 3.1.1 and 3.0.7 were released to address the vulnerabilities. Please see the CVE reports below for specific upgrade and mitigation instructions:

Spring Cloud users should upgrade to 2021.0.1 (which includes 3.1.1) or for 2020.0.x users should upgrade Spring Cloud Gateway to 3.0.7.

comments powered by Disqus