A malicious user, or attacker, can send a request using a specially crafted URL that can lead a directory traversal attack.
The information has been provided by Yiming Xiang
The original article can be found at https://tanzu.vmware.com/security/cve-2020-5405
- Spring Cloud Config
- 2.2.0 to 2.2.1
- 2.1.0 to 2.1.6
Published Date: 03/06/2020