module
Directory Traversal in Spring Cloud Config Server
| Disclosed |
|---|
| Jun 1, 2020 |
Disclosed
Jun 1, 2020
Description
This module exploits an unauthenticated directory traversal vulnerability
which exists in Spring Cloud Config versions 2.2.x prior to 2.2.3 and
2.1.x prior to 2.1.9, and older unsupported versions. Spring
Cloud Config listens by default on port 8888.
which exists in Spring Cloud Config versions 2.2.x prior to 2.2.3 and
2.1.x prior to 2.1.9, and older unsupported versions. Spring
Cloud Config listens by default on port 8888.
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.