제출 #313847: https://gitee.com/dromara/open-capacity-platform open-capacity-platform v2.0.1 Security Misconfiguration정보

제목https://gitee.com/dromara/open-capacity-platform open-capacity-platform v2.0.1 Security Misconfiguration
설명ocp(open-capacity-platform) is an enterprise microservice framework based on layui+springcloud (user rights management, Configuration center management, application management,....). Its core design goal is to separate the front and back end, rapid development and deployment, simple learning, powerful, to provide fast access to the core interface capabilities, its goal is to help enterprises build a set of similar Baidu ability open platform framework. The auth-server component of ocp has a security configuration vulnerability. It can access all actuator terminals, including dangerous ports such as heapdump, which exposes sensitive information.
원천⚠️ https://github.com/ggfzx/OCP-Security-Misconfiguration/tree/main
사용자
 ggfzx (UID 67509)
제출2024. 04. 10. AM 06:27 (2 연령 ago)
모더레이션2024. 04. 17. PM 06:46 (8 days later)
상태수락
VulDB 항목261367 [Dromara open-capacity-platform 2.0.1 auth-server /actuator/heapdump 정보 공개]
포인트들20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!