Security Advisory

CVE-2021-42010

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-10-24 00:00:00

Last updated 2025-05-07 15:53:35

Assigner apache

State PUBLISHED

Description

Heron versions <= 0.20.4-incubating allows CRLF log injection because of the lack of escaping in the log statements. Please update to version 0.20.5-incubating which addresses this issue.

← Browse all CVEs View on cve.org ↗