Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Exploit for Code Injection in Vmware Spring Framework

🗓️ 31 Mar 2022 00:28:24Type 
githubexploit
 githubexploit👁 466 Views

This is a dockerized application vulnerable to the Spring4Shell (CVE-2022-22965) exploit. It allows remote code execution through a webshell

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
ReporterTitlePublishedViews
Family
The Hacker News		Security Patch Releases for Critical Zero-Day Bug in Java Spring Framework
31 Mar 202215:35
thn
The Hacker News		Watch Out! Cryptocurrency Miners Targeting Dockers, AWS and Alibaba Cloud
22 Apr 202209:30
thn
The Hacker News		Hackers Exploited Atlassian Confluence Bug to Deploy Ljl Backdoor for Espionage
4 Aug 202210:24
thn
The Hacker News		Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware
9 Apr 202205:18
thn
IBM Security Bulletins		Security Bulletin: IBM Maximo For Civil infrastructure is vulnerable to a remote code execution in Spring Framework (CVE-2022-22965)
11 Apr 202215:15
ibm
IBM Security Bulletins		Security Bulletin: IBM Sterling Connect:Direct Web Services is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)
7 Jun 202205:50
ibm
IBM Security Bulletins		Security Bulletin: IBM Spectrum Conductor is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)
20 Jun 202202:10
ibm
IBM Security Bulletins		Security Bulletin: IBM Sterling Control Center is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)
25 May 202222:33
ibm
IBM Security Bulletins		Security Bulletin: IBM Robotic Process Automation with Automation Anywhere is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)
19 May 202216:14
ibm
IBM Security Bulletins		Security Bulletin: Operations Dashboard in Cloud Pak for Integration is affected by Spring4Shell CVE-2022-22965
27 Apr 202214:59
ibm
Rows per page

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
31 Mar 2022 00:24Current
8.9High risk
Vulners AI Score8.9
CVSS27.5
CVSS39.8
EPSS0.94487
spring4shelldockerremote code executiontomcatwebshellvulnerabilityexploitcve-2022-22965
466
.json
Report