Vulnerabilities

CVE-2025-22227

by Fred · 16/07/2025

In some specific scenarios with chained redirects, Reactor Netty HTTP client leaks credentials. In order for this to happen, the HTTP client must have been explicitly configured to follow redirects.

Assigner : security@vmware.com

More information : https://spring.io/security/cve-2025-22227

Similar

Tags: Cybersecurity Alert