CyberRota
← Ana sayfaya dön

CVE-2026-47825

HIGH · CVSS 8.6 EPSS %0.14

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-15T21:17:13.650 · Çekilme zamanı: 2026-06-30T12:21:01.976462+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-47825
Severity
HIGH
CVSS
8.6
EPSS
%0.14

Orijinal NVD Açıklaması

Spring Cloud Gateway Server forwards the X-Forwarded-For and Forwarded headers from untrusted proxies in certain configuration scenarios. This affects both the WebMVC and WebFlux Gateway Servers. Affected versions: Spring Cloud Gateway 3.1.x (fix 3.1.13). Spring Cloud Gateway 4.1.x (fix 4.1.13). Spring Cloud Gateway 4.2.x (fix 4.2.9). Spring Cloud Gateway 4.3.x (fix 4.3.5). Spring Cloud Gateway 5.0.x (fix 5.0.2).