CVE-2022-46166

The CVE affects Spring Boot Admins with Spring Boot Admin Server where Notifiers (e.g., Teams-Notifier) are enabled and users have write access to environment variables via the UI. The root cause involves potential code execution via the /env actuator endpoint, enabling an attacker to inject or e...