The version of Spring Cloud Function running on the remote host is affected by a remote code execution vulnerability in the routing functionality. A remote, unauthenticated attacker could provide a specially crafted SpEL as a routing expression that may result in remote code execution on the remote host.
Binary data spring_cloud_CVE-2022-22963.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
vmware | spring_cloud_function | cpe:/a:vmware:spring_cloud_function |