Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM51E91F63493D03821DE75EB837D6CC4203817ED8E5D8FB5A04FBD207CAC37546
HistoryMar 22, 2024 - 4:06 p.m.

Security Bulletin: Vulnerabilities Spring Boot, Spring Security and Spring Framework might affect IBM Storage Copy Data Management

2024-03-2216:06:46
www.ibm.com
9
ibm storage copy data management
vulnerabilities
denial of service
privilege escalation
authorization bypass
further attacks

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.0%

JSON

Summary

IBM Storage Copy Data Management can be affected by vulnerabilities in Spring Boot, Spring Security, and Spring Framework. An attacker could exploit these vulnerabilities to cause a denial of service condition, to take over the application, to launch further attacks on the system, to bypass authorization and obtain access, and to insert additional log entries, as described by the CVEs in the “Vulnerability Details” section.

Vulnerability Details

CVEID:CVE-2022-22950
**DESCRIPTION:**VMware Tanzu Spring Framework is vulnerable to a denial of service, caused by improper input validation. By sending a specially-crafted crafted SpEL expression, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base score: 5.4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/223096 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L)

CVEID:CVE-2022-27772
**DESCRIPTION:**Spring Boot could allow a local authenticated attacker to gain elevated privileges on the system, caused by temporary directory hijacking in org.springframework.boot.web.server.AbstractConfigurableWebServerFactory.createTempDir method. By placing a specially-crafted file, an attacker could exploit this vulnerability to take over the application.
CVSS Base score: 7.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/223090 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H)

CVEID:CVE-2022-22971
**DESCRIPTION:**Vmware Tanzu Spring Framework is vulnerable to a denial of service, caused by a flaw with a STOMP over WebSocket endpoint. By sending a specially-crafted request, a remote authenticated attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/226492 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2022-22976
**DESCRIPTION:**Spring Security could provide weaker than expected security, caused by an integer overflow vulnerability which results in a lack of salt rounds when using the BCrypt class with the maximum work factor. A local authenticated attacker could exploit this vulnerability to launch further attacks on the system.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/226733 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N)

CVEID:CVE-2022-22978
**DESCRIPTION:**Spring Security could allow a remote attacker to bypass security restrictions, caused by a flaw in the RegexRequestMatcher component. By misconfiguring RegexRequestMatcher with . in the regular expression, an attacker could exploit this vulnerability to bypass authorization and obtain access.
CVSS Base score: 8.2
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/226989 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N)

CVEID:CVE-2021-22060
**DESCRIPTION:**VMware Tanzu Spring Framework could allow a remote authenticated attacker to bypass security restrictions, caused by improper input validation. By sending a specially-crafted request, an attacker could exploit this vulnerability to insert additional log entries.
CVSS Base score: 4.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/217183 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N)

CVEID:CVE-2022-22970
**DESCRIPTION:**Vmware Tanzu Spring Framework is vulnerable to a denial of service, caused by a flaw in the handling of file uploads. By sending a specially-crafted request, a remote authenticated attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/226491 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Storage Copy Data Management 2.2.0.0 - 2.2.22.1

Remediation/Fixes

Affected Versions|**Fixing
**Level|Platform|**Link to Fix and Instructions
**
—|—|—|—
2.2.0.0 - 2.2.22.1| 2.2.23.0| Linux| ** **<https://www.ibm.com/support/pages/node/7116233&gt;

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm storage copy data managementeq2.2

Related

spring 3
openvas 4
atlassian 2
nessus 10
ibm 51
github 7
cve 7
githubexploit 7
osv 14
veracode 5
ubuntucve 6
prion 7
debiancve 4
redhatcve 6
redhat 8
cnvd 3
alpinelinux 2
broadcom 1
ics 1
thn 1
f5 1
cert 1
rapid7blog 1
checkpoint_security 1
qualysblog 1
oracle 6
spring
spring
CVE-2022-22976: BCrypt skips salt rounds for work factor of 31
2022-05-16 05:32:00
CVE-2022-22978: Authorization Bypass in RegexRequestMatcher
2022-05-16 05:27:00
CVE report published for Spring Framework
2022-03-28 08:00:00
openvas
openvas
VMware Spring Framework < 5.2.22, 5.3.x < 5.3.20 Multiple DoS Vulnerabilities - Windows
2022-05-11 00:00:00
VMware Spring Framework < 5.2.22, 5.3.x < 5.3.20 Multiple DoS Vulnerabilities - Linux
2022-05-11 00:00:00
VMware Spring Framework < 5.2.20, 5.3.x < 5.3.17 DoS Vulnerability - Linux
2022-04-06 00:00:00
atlassian
atlassian
Jira Server/DC impacted by CVE-2022-22970 & CVE-2022-22971 via vulnerable version of Spring framework
2023-02-03 05:50:39
Synchrony Proxy: spring-beans 5.3.19 is vulnerable to CVE-2022-22970
2022-09-14 06:31:26
nessus
nessus
Atlassian Jira < 9.6.0 (JRASERVER-74776) (deprecated)
2023-03-13 00:00:00
Oracle MySQL Enterprise Monitor (Jan 2023 CPU)
2023-01-20 00:00:00
Spring Security < 5.5.7 / 5.6.x < 5.6.4 Authorization Bypass
2023-01-26 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in Spring Framework affect SPSS Collaboration and Deployment Services
2022-05-30 14:20:34
Security Bulletin: IBM Common Licensing is vulnerable by a remote code attack in Spring Framework and Apache Commons(CVE-2022-22970,CVE-2022-22971,CVE-2022-33980)
2022-07-25 07:50:01
Security Bulletin: IBM InfoSphere Information Server is affected but not classified as vulnerable to multiple vulnerabilities in Spring Security
2023-05-17 19:47:18
github
github
Allocation of Resources Without Limits or Throttling in Spring Framework
2022-05-13 00:00:29
Integer overflow in BCrypt class in Spring Security
2022-05-20 00:00:38
Temporary Directory Hijacking to Local Privilege Escalation Vulnerability in org.springframework.boot:spring-boot
2022-07-11 20:59:02
cve
cve
CVE-2022-22971
2022-05-12 20:15:00
CVE-2022-22950
2022-04-01 23:15:00
CVE-2022-27772
2022-03-30 18:15:00
githubexploit
githubexploit
Exploit for Incorrect Authorization in Vmware Spring Security
2023-03-16 09:34:17
Exploit for Integer Overflow or Wraparound in Vmware Spring Security
2022-05-10 16:36:13
Exploit for Incorrect Authorization in Vmware Spring Security
2022-07-13 12:38:26
osv
osv
Authorization bypass in Spring Security
2022-05-20 00:00:39
CVE-2022-22976
2022-05-19 15:15:08
CVE-2022-22978
2022-05-19 15:15:08
veracode
veracode
Integer Overflow
2022-05-20 04:01:08
Denial Of Service (DoS)
2022-04-07 12:06:55
Authorization Bypass
2022-05-20 13:00:01
ubuntucve
ubuntucve
CVE-2022-22976
2022-05-19 00:00:00
CVE-2022-22971
2022-05-12 00:00:00
CVE-2022-22978
2022-05-19 00:00:00
prion
prion
Race condition
2022-04-01 23:15:00
Design/Logic Flaw
2022-05-12 20:15:00
Directory traversal
2022-03-30 18:15:00
debiancve
debiancve
CVE-2022-22950
2022-04-01 23:15:00
CVE-2022-22971
2022-05-12 20:15:00
CVE-2022-22970
2022-05-12 20:15:00
redhatcve
redhatcve
CVE-2022-22976
2022-05-17 16:10:13
CVE-2022-22971
2022-05-18 17:34:35
CVE-2022-22978
2022-05-18 22:58:31
redhat
redhat
(RHSA-2023:1661) Important: Red Hat AMQ Broker 7.11.0 release and security update
2023-04-05 13:22:07
(RHSA-2023:3185) Important: Red Hat AMQ Broker 7.10.3 release and security update
2023-05-17 13:55:59
(RHSA-2022:5532) Important: Red Hat Fuse 7.11.0 release and security update
2022-07-07 14:16:35
cnvd
cnvd
Vmware Spring Framework has an unspecified vulnerability
2022-01-10 00:00:00
Spring Framework Denial of Service Vulnerability (CNVD-2022-68890)
2022-05-13 00:00:00
Spring Framework Denial of Service Vulnerability
2022-05-13 00:00:00
alpinelinux
alpinelinux
CVE-2022-22971
2022-05-12 20:15:00
CVE-2022-22970
2022-05-12 20:15:00
broadcom
broadcom
Spring Framework versions 5.3.0 - 5.3.16 and older unsupported versions, it is possible for a user to provide a specially crafted SpEL
2023-08-29 00:00:00
ics
ics
Hitachi Energy Lumada Asset Performance Management Prognostic Model Executor Service
2022-10-13 12:00:00
thn
thn
Unpatched Java Spring Framework 0-Day RCE Bug Threatens Enterprise Web Apps Security
2022-03-31 05:52:00
f5
f5
K11510688 : Spring Framework (Spring4Shell) and Spring Cloud vulnerabilities CVE-2022-22965, CVE-2022-22950, and CVE-2022-22963
2022-03-31 00:00:00
cert
cert
Spring Framework insecurely handles PropertyDescriptor objects with data binding
2022-03-31 00:00:00
rapid7blog
rapid7blog
Spring4Shell: Zero-Day Vulnerability in Spring Framework (CVE-2022-22965)
2022-03-30 22:33:54
checkpoint_security
checkpoint_security
Check Point Response to Spring Vulnerabilities CVE-2022-22963, CVE-2022-22946, CVE-2022-22947, CVE-2022-22965 (Spring4Shell) and CVE-2022-22950
2022-03-30 21:41:02
qualysblog
qualysblog
Oracle Patch Tuesday April 2023 Security Update Review
2023-04-19 11:47:21
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.2 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.0%

JSON
Related for 51E91F63493D03821DE75EB837D6CC4203817ED8E5D8FB5A04FBD207CAC37546
spring3openvas4atlassian2nessus10ibm51github7cve7githubexploit7osv14veracode5ubuntucve6prion7debiancve4redhatcve6redhat8cnvd3alpinelinux2broadcom1ics1thn1f51cert1rapid7blog1checkpoint_security1qualysblog1oracle6