Vulnerabilities > Apache > Heron > 0.17.8.10
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-10-24 | CVE-2021-42010 | Improper Encoding or Escaping of Output vulnerability in Apache Heron Heron versions <= 0.20.4-incubating allows CRLF log injection because of the lack of escaping in the log statements. | 9.8 |