VMware (Spring Cloud Gateway) Data Breach
VMware (Spring Cloud Gateway) experienced a data breach that was reported on May 16, 2022. Spring Cloud Gateway applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured.
Key Facts
- Organization
- VMware (Spring Cloud Gateway)
- Date Reported
- May 16, 2022
- Incident Type
- web app exploit
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
- Tags
Source
View original source - External link to primary source documentation
Understanding web app exploit Incidents
Web application exploits target vulnerabilities in websites and APIs. Secure development practices, WAFs, and penetration testing protect against these attacks.