Lucene search

FortiGuard LabsFG-IR-22-072

HistoryApr 01, 2022 - 12:00 a.m.

CVE-2022-22965 and CVE-2022-22963 vulnerabilities

2022-04-0100:00:00

FortiGuard Labs

www.fortiguard.com

293

0.975 High

EPSS

Percentile

100.0%

JSON

Two distinct spring project vulnerabilities where released recently with critical CVSS score and classified as zero-Day attacks.
The two vulnerabilities are currently known as :
CVE-2022-22965 or Spring4Shell:
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is not vulnerable to the exploit. However, the nature of the vulnerability is more general, and there may be other ways to exploit it.
https://tanzu.vmware.com/security/cve-2022-22965
https://www.cyberkendra.com/2022/03/springshell-rce-0-day-vulnerability.html?fbclid=IwAR2fXxKQjG9vnJiOaXyZ1N_Ypx91TOzO6f48qGZRfKRzinYtD5nUCIptIjg&m=1
CVE-2022-22963:
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing
functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that
may result in access to local resources.
<https://tanzu.vmware.com/security/cve-2022-22963>

CPENameOperatorVersion
fortisoareq7.0.3
fortisoareq7.0.2
fortisoareq7.0.1
fortisoareq7.0.0
fortisoareq6.4.4
fortisoareq6.4.3
fortisoareq6.4.1
fortisoareq6.4.0

Name	Operator	Version
fortisoar	eq	7.0.3
fortisoar	eq	7.0.2
fortisoar	eq	7.0.1
fortisoar	eq	7.0.0
fortisoar	eq	6.4.4
fortisoar	eq	6.4.3
fortisoar	eq	6.4.1
fortisoar	eq	6.4.0

ibm

Security Bulletin: CMIS is affected since it uses Spring Framework, but not vulnerable to [CVE-2022-22965] and [CVE-2022-22963]

2022-10-18 15:36:16

Security Bulletin: IBM QRadar SIEM is affected by a remote code execution in Spring Framework (CVE-2022-22963, CVE-2022-22965, CVE-2022-22950)

2022-06-24 17:34:09

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data is affected by a remote code execution in Spring Framework (CVE-2022-22965)

2022-04-27 14:54:28

rapid7blog

Update on Spring4Shell’s Impact on Rapid7 Solutions and Systems

2022-04-01 14:42:42

Metasploit Weekly Wrap-Up

2022-04-01 18:34:29

What’s New in InsightVM and Nexpose: Q2 2022 in Review

2022-07-28 14:00:00

kitploit

Spring4Shell-Scan - A Fully Automated, Reliable, And Accurate Scanner For Finding Spring4Shell And Spring Cloud RCE Vulnerabilities

2022-04-24 21:30:00

CVE-2022-22963 - PoC Spring Java Framework 0-day Remote Code Execution Vulnerability

2022-03-31 11:30:00

Spring4Shell-POC - Dockerized Spring4Shell (CVE-2022-22965) PoC Application And Exploit

2022-05-10 12:30:00

qualysblog

Spring Framework Zero-Day Remote Code Execution (Spring4Shell) Vulnerability

2022-03-31 09:00:00

paloalto

Informational: Impact of Spring Vulnerabilities CVE-2022-22963 and CVE-2022-22965

2022-03-31 02:30:00

K11510688 : Spring Framework (Spring4Shell) and Spring Cloud vulnerabilities CVE-2022-22965, CVE-2022-22950, and CVE-2022-22963

2022-03-31 00:00:00

cert

Spring Framework insecurely handles PropertyDescriptor objects with data binding

2022-03-31 00:00:00

cisa

Spring Releases Security Updates Addressing "Spring4Shell" and Spring Cloud Function Vulnerabilities

2022-04-01 00:00:00

securelist

Spring4Shell (CVE-2022-22965): details and mitigations

2022-04-04 15:30:36

avleonov

Spring4Shell, Spring Cloud Function RCE and Spring Cloud Gateway Code Injection

2022-04-03 00:15:45

wallarmlab

Update on 0-day vulnerabilities in Spring (Spring4Shell and CVE-2022-22963)

2022-03-31 01:49:02

githubexploit

Exploit for Code Injection in Vmware Spring Cloud Function

2022-03-31 14:29:24

Exploit for Code Injection in Vmware Spring Cloud Function

2023-10-28 21:42:38

Exploit for Expression Language Injection in Vmware Spring Cloud Function

2023-12-28 06:58:17

saint

Spring Cloud Function Remote Code Execution

2022-04-05 00:00:00

Spring Cloud Function Remote Code Execution

2022-04-05 00:00:00

github

Spring Cloud Function Code Injection with a specially crafted SpEL as a routing expression

2022-04-03 00:00:59

Remote Code Execution in Spring Framework

2022-03-31 18:30:50

prion

Remote code execution

2022-04-01 23:15:00

Remote code execution

2022-04-01 23:15:00

zdt

Spring Cloud Function SpEL Injection Exploit

2022-03-31 00:00:00

Spring Cloud 3.2.2 - Remote Command Execution Exploit

2023-07-11 00:00:00

Spring4Shell Spring Framework Class Property Remote Code Execution Exploit

2022-05-10 00:00:00

redhat

(RHSA-2022:1291) Low: Release of OpenShift Serverless Client kn 1.21.1

2022-04-11 07:34:16

(RHSA-2022:1292) Low: Release of OpenShift Serverless 1.21.1

2022-04-11 08:22:04

(RHSA-2022:1627) Low: Red Hat AMQ Broker 7.9.4 release and security update

2022-04-27 09:45:16

packetstorm

Spring Cloud 3.2.2 Remote Command Execution

2023-07-12 00:00:00

Spring Cloud Function SpEL Injection

2022-03-31 00:00:00

Spring4Shell Spring Framework Class Property Remote Code Execution

2022-05-10 00:00:00

osv

CVE-2022-22963

2022-04-01 23:15:13

Spring Cloud Function Code Injection with a specially crafted SpEL as a routing expression

2022-04-03 00:00:59

CVE-2022-22965

2022-04-01 23:15:13

thn

Security Patch Releases for Critical Zero-Day Bug in Java Spring Framework

2022-03-31 15:35:00

Watch Out! Cryptocurrency Miners Targeting Dockers, AWS and Alibaba Cloud

2022-04-22 09:30:00

talosblog

Threat Advisory: Spring4Shell

2022-04-04 10:26:10

nessus

Spring Framework Spring4Shell (CVE-2022-22965)

2022-04-06 00:00:00

Amazon Linux 2 : tomcat (ALASTOMCAT9-2023-004)

2023-09-27 00:00:00

Spring Cloud Function SPEL Expression Injection (direct check)

2022-03-31 00:00:00

trendmicroblog

CVE-2022-22965: Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware

2022-04-08 00:00:00

Spring4Shell Vulnerability CVE-2022-22965 Exploited to Deploy Cryptocurrency Miners

2022-04-20 00:00:00

Analyzing Attempts to Exploit the Spring4Shell Vulnerability CVE-2022-22965 to Deploy Cryptocurrency Miners

2022-04-20 00:00:00

ubuntucve

CVE-2022-22965

2022-04-01 00:00:00

msrc

Microsoft’s Response to CVE-2022-22965 Spring Framework

2022-04-05 07:00:00

Microsoft’s Response to CVE-2022-22965 Spring Framework

2022-04-05 07:00:00

Microsoft’s Response to CVE-2022-22965 Spring Framework

2022-04-05 23:41:01

nuclei

Spring - Remote Code Execution

2022-04-01 11:43:45

Spring Cloud - Remote Code Execution

2022-03-27 14:47:28

redhatcve

CVE-2022-22963

2022-03-31 18:32:29

CVE-2022-22965

2022-03-31 18:32:57

akamaiblog

Spring Cloud Function SpEL Injection (CVE-2022-22963) Exploited in the Wild

2022-03-31 19:30:00

attackerkb

CVE-2022-22963

2022-04-01 00:00:00

CVE-2022-22965

2022-04-01 00:00:00

cvelist

CVE-2022-22963

2022-04-01 00:00:00

CVE-2022-22965

2022-04-01 22:17:30

nvd

CVE-2022-22963

2022-04-01 23:15:13

CVE-2022-22965

2022-04-01 23:15:13

veracode

Remote Code Execution

2022-03-31 01:51:42

Remote Code Execution (RCE)

2022-03-31 00:56:39

cve

CVE-2022-22963

2022-04-01 23:15:13

CVE-2022-22965

2022-04-01 23:15:13

spring

CVE report published for Spring Cloud Function

2022-03-30 00:53:00

Spring Framework RCE, Mitigation Alternative

2022-04-01 11:49:00

cisco

Vulnerability in Spring Cloud Function Framework Affecting Cisco Products: March 2022

2022-04-01 23:45:00

openvas

VMware Spring Cloud Function < 3.1.7, 3.2.x < 3.2.3 RCE Vulnerability - Active Check

2022-05-06 00:00:00

VMware Spring Framework RCE Vulnerability (Spring4Shell, SpringShell) - Active Check

2023-12-13 00:00:00

VMware Spring Boot RCE Vulnerability (Spring4Shell, SpringShell)

2022-04-06 00:00:00

checkpoint_advisories

Spring Cloud Function Remote Code Execution (CVE-2022-22963)

2022-03-31 00:00:00

Spring Core Remote Code Execution (CVE-2022-22965)

2022-03-31 00:00:00

metasploit

Spring Cloud Function SpEL Injection

2022-03-30 22:38:41

Spring Framework Class property RCE (Spring4Shell)

2022-04-07 13:22:18

cisa_kev

VMware Tanzu Spring Cloud Function Remote Code Execution Vulnerability

2022-08-25 00:00:00

Spring Framework JDK 9+ Remote Code Execution Vulnerability

2022-04-04 00:00:00

wizblog

Addressing the Spring4Shell and CVE-2022-22963 RCE vulnerabilities in cloud environments

2022-04-01 05:00:39

vmware

VMware Response to Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)

2022-04-02 00:00:00

VMware Response to Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)

2022-04-02 00:00:00

VMware Response to Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)

2022-04-02 00:00:00

vaadin

Spring Core Remote Code Execution via Data Binding on JDK 9+

2022-04-01 00:00:00

mmpc

SpringShell RCE vulnerability: Guidance for protecting against and detecting CVE-2022-22965

2022-04-05 01:11:24

mssecure

SpringShell RCE vulnerability: Guidance for protecting against and detecting CVE-2022-22965

2022-04-05 01:11:24

impervablog

Imperva Protects from New Spring Framework Zero-Day Vulnerabilities

2022-03-31 15:20:03

malwarebytes

4 over-hyped security vulnerabilities of 2022

2022-12-19 01:00:00

debiancve

CVE-2022-22965

2022-04-01 23:15:13

hivepro

RCE Spring Framework Zero-Day vulnerability “Spring4Shell”

2022-04-12 02:21:11

cloudfoundry

CVE-2022-22965: UAA affected by Spring Framework RCE via Data Binding on JDK 9+ | Cloud Foundry

2022-04-05 00:00:00

0.975 High

EPSS

Percentile

100.0%

JSON

CVE-2022-22965 and CVE-2022-22963 vulnerabilities

Related