cve-2022-22947

[javixeneize]

Hi

Is there any info about https://tanzu.vmware.com/security/cve-2022-22947? It affects spring cloud gateway but its not clear which library is the one vulnerable, i guess it is spring-cloud-gateway-server.

The CVE has still not been released by NVD

Is this vuln catalogued in the DB? If not, do you have any extra info on the exact library affected to create a PR?

[taladrane]

Hi @javixeneize, we've since included this in our database and it can be found here - GHSA-3gx9-37ww-9qw6. It takes some time for new vulnerability data to make its way to us for database inclusion, so we appreciate your patience. Unfortunately we do not have any additonal information about this vulnerability outside of what's included in the advisory. Thanks!