CVE-2022-22947

🗓️ 03 Mar 2022 00:00:00Reported by vmwareType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 2126 Views🌐 WEB

Spring cloud gateway code injection vulnerabilit

Reporter	Title	Published	Views	Family All 105
GithubExploit	Exploit for Code Injection in Vmware Spring_Cloud_Gateway	23 Aug 202206:38	–	githubexploit
GithubExploit	Exploit for Expression Language Injection in Vmware Spring_Cloud_Gateway	15 Apr 202215:41	–	githubexploit
GithubExploit	Exploit for Code Injection in Vmware Spring_Cloud_Gateway	16 May 202215:27	–	githubexploit
GithubExploit	Exploit for Expression Language Injection in Vmware Spring_Cloud_Gateway	7 Mar 202207:24	–	githubexploit
GithubExploit	Exploit for Code Injection in Vmware Spring_Cloud_Gateway	6 Apr 202209:40	–	githubexploit
GithubExploit	Exploit for Code Injection in Pivotal_Software Spring_Data_Commons	6 Dec 202510:58	–	githubexploit
GithubExploit	Exploit for Code Injection in Vmware Spring_Cloud_Gateway	8 Mar 202209:32	–	githubexploit
GithubExploit	Exploit for Code Injection in Vmware Spring_Cloud_Gateway	21 Mar 202223:37	–	githubexploit
GithubExploit	Exploit for Expression Language Injection in Vmware Spring_Cloud_Gateway	4 Mar 202214:58	–	githubexploit
GithubExploit	Exploit for Expression Language Injection in Vmware Spring_Cloud_Gateway	8 Mar 202209:32	–	githubexploit

NVD

Node

vmware spring_cloud_gatewayRange<3.0.7

vmware spring_cloud_gatewayMatch3.1.0

Node

oracle commerce_guided_searchMatch11.3.2

oracle communications_cloud_native_core_binding_support_functionMatch1.11.0

oracle communications_cloud_native_core_binding_support_functionMatch22.1.3

oracle communications_cloud_native_core_consoleMatch22.2.0

oracle communications_cloud_native_core_network_exposure_functionMatch22.1.0

oracle communications_cloud_native_core_network_function_cloud_native_environmentMatch1.10.0

oracle communications_cloud_native_core_network_repository_functionMatch1.15.0

oracle communications_cloud_native_core_network_repository_functionMatch1.15.1

oracle communications_cloud_native_core_network_repository_functionMatch22.1.2

oracle communications_cloud_native_core_network_repository_functionMatch22.2.0

oracle communications_cloud_native_core_network_slice_selection_functionMatch1.8.0

oracle communications_cloud_native_core_network_slice_selection_functionMatch22.1.0

oracle communications_cloud_native_core_security_edge_protection_proxyMatch22.1.1

oracle communications_cloud_native_core_service_communication_proxyMatch1.15.0

[
  {
    "vendor": "n/a",
    "product": "Spring Cloud Gateway",
    "versions": [
      {
        "version": "Spring cloud gateway versions 3.1.x prior to 3.1.1+, 3.0.x prior to 3.0.7+ and all old and unsupported versions",
        "status": "affected"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/168742/Spring-Cloud-Gateway-3.1.0-Remote-Code-Execution.html
packetstormsecurity	www.packetstormsecurity.com/files/166219/Spring-Cloud-Gateway-3.1.0-Remote-Code-Execution.html
oracle	www.oracle.com/security-alerts/cpujul2022.html
tanzu	www.tanzu.vmware.com/security/cve-2022-22947
oracle	www.oracle.com/security-alerts/cpuapr2022.html
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

Parameter	Position	Path	Description	CWE
id	request body	/actuator/gateway/routes/{route_name}	Endpoint used to create a malicious route that can execute commands via the Actuator feature.	CWE-917, CWE-94
filters	request body	/actuator/gateway/routes/{route_name}	Endpoint used to create a malicious route that can execute commands via the Actuator feature.	CWE-917, CWE-94
uri	request body	/actuator/gateway/routes/{route_name}	Endpoint used to create a malicious route that can execute commands via the Actuator feature.	CWE-917, CWE-94

30 Oct 2025 20:04Current

9.7High risk

Vulners AI Score9.7

CVSS 26.8

CVSS 3.110

EPSS0.94461

SSVC

cve-2022-22947 spring cloud gateway code injection vulnerability nvd