Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2022-2497 - log back

CVE-2022-2497 edited at 28 Jul 2022 17:31:21

Severity

-	Unknown
+	Medium

Remote

-	Unknown
+	Remote

Description

+	A malicious maintainer could exfiltrate an integration's access token by modifying the integration URL such that authenticated requests are sent to an attacker controlled server.

References

Notes

CVE-2022-2497 created at 28 Jul 2022 16:57:40