spring-beans is vulnerable to remote code execution. Using Spring Parameter Binding with non-basic parameter types, such as POJOs, allows an unauthenticated attacker to execute arbitrary code on the target system by writing or uploading arbitrary files (e.g .jsp files) to a location that can be loaded by the application server. Initial analysis at time of writing shows that exploitation of the vulnerability is only possible with JRE 9 and above, and Apache Tomcat 9 and above, and that the vulnerability requires the usage of Spring parameter binding with non-basic parameter types such as POJOs.

CPENameOperatorVersion
spring beansle5.2.19.RELEASE
spring beansle5.3.17
spring beansle5.2.19.RELEASE
spring beansle5.3.17

Name	Operator	Version
spring beans	le	5.2.19.RELEASE
spring beans	le	5.3.17
spring beans	le	5.2.19.RELEASE
spring beans	le	5.3.17

References

packetstormsecurity.com/files/166713/Spring4Shell-Code-Execution.html

packetstormsecurity.com/files/167011/Spring4Shell-Spring-Framework-Class-Property-Remote-Code-Execution.html

cert-portal.siemens.com/productcert/pdf/ssa-254054.pdf

github.com/craig/SpringCore0day

psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0005

spring.io/blog/2022/03/31/spring-framework-rce-early-announcement

tanzu.vmware.com/security/cve-2022-22965

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-java-spring-rce-Zx9GUc67

www.cyberkendra.com/2022/03/spring4shell-details-and-exploit-code.html

www.cyberkendra.com/2022/03/springshell-rce-0-day-vulnerability.html

www.oracle.com/security-alerts/cpuapr2022.html

www.oracle.com/security-alerts/cpujul2022.html

www.praetorian.com/blog/spring-core-jdk9-rce/

githubexploit 53

redhatcve 1

vmware 5

rapid7blog 11

packetstorm 1

ibm 41

vaadin 1

msrc 4

openvas 3

cvelist 2

nvd 2

thn 5

talosblog 1

nessus 12

trendmicroblog 3

redhat 7

ubuntucve 1

nuclei 1

attackerkb 1

spring 3

osv 2

prion 2

debiancve 1

hivepro 3

cloudfoundry 1

cisco 1

checkpoint_advisories 1

cve 2

kitploit 2

metasploit 1

cisa_kev 1

github 1

zdt 1

ics 1

qualysblog 4

fortinet 1

paloalto 1

f5 1

cert 1

cisa 1

securelist 2

avleonov 1

trellix 4

mmpc 1

mssecure 1

impervablog 1

malwarebytes 1

checkpoint_security 1

githubexploit

Exploit for Code Injection in Vmware Spring Framework

2022-03-31 02:00:18

Exploit for Code Injection in Vmware Spring Framework

2022-03-31 16:14:36

Exploit for Code Injection in Vmware Spring Framework

2022-04-01 04:51:44

redhatcve

CVE-2022-22965

2022-03-31 18:32:57

vmware

VMware Response to Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)

2022-04-02 00:00:00

VMware Response to Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)

2022-04-02 00:00:00

VMware Response to Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)

2022-04-02 00:00:00

rapid7blog

XSS in JSON: Old-School Attacks for Modern Applications

2022-05-04 15:48:03

It’s the Summer of AppSec: Q2 Improvements to Our Industry-Leading DAST and WAAP

2022-07-13 15:45:00

Securing Your Applications Against Spring4Shell (CVE-2022-22965)

2022-04-01 22:26:36

packetstorm

Spring4Shell Spring Framework Class Property Remote Code Execution

2022-05-10 00:00:00

ibm

Security Bulletin: IBM Spectrum Conductor is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)

2022-06-20 02:10:14

Security Bulletin: Rational Test Control Panel component in Rational Test Virtualization Server and Rational Test Workbench is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)

2022-06-16 17:10:46

Security Bulletin: IBM Sterling Connect:Direct Web Services is affected but not classified as vulnerable by a remote code execution in Spring Framework (CVE-2022-22965)

2022-06-07 05:50:15

vaadin

Spring Core Remote Code Execution via Data Binding on JDK 9+

2022-04-01 00:00:00

msrc

Microsoft’s Response to CVE-2022-22965 Spring Framework

2022-04-05 07:00:00

Microsoft’s Response to CVE-2022-22965 Spring Framework

2022-04-05 07:00:00

Microsoft’s Response to CVE-2022-22965 Spring Framework

2022-04-05 23:41:01

openvas

VMware Spring Framework RCE Vulnerability (Spring4Shell, SpringShell) - Active Check

2023-12-13 00:00:00

VMware Spring Boot RCE Vulnerability (Spring4Shell, SpringShell)

2022-04-06 00:00:00

VMware Spring Framework RCE Vulnerability (Spring4Shell, SpringShell) - Version Check

2022-03-31 00:00:00

cvelist

CVE-2022-22965

2022-04-01 22:17:30

CVE-2022-43712

2023-07-26 00:00:00

nvd

CVE-2022-22965

2022-04-01 23:15:13

CVE-2022-43712

2023-07-26 14:15:09

thn

Security Patch Releases for Critical Zero-Day Bug in Java Spring Framework

2022-03-31 15:35:00

Watch Out! Cryptocurrency Miners Targeting Dockers, AWS and Alibaba Cloud

2022-04-22 09:30:00

Hackers Exploited Atlassian Confluence Bug to Deploy Ljl Backdoor for Espionage

2022-08-04 10:24:00

talosblog

Threat Advisory: Spring4Shell

2022-04-04 10:26:10

nessus

Spring Framework Spring4Shell (CVE-2022-22965)

2022-04-06 00:00:00

Amazon Linux 2 : tomcat (ALASTOMCAT9-2023-004)

2023-09-27 00:00:00

RHEL 8 : spring-framework (Unpatched Vulnerability)

2024-05-11 00:00:00

trendmicroblog

CVE-2022-22965: Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware

2022-04-08 00:00:00

Spring4Shell Vulnerability CVE-2022-22965 Exploited to Deploy Cryptocurrency Miners

2022-04-20 00:00:00

Analyzing Attempts to Exploit the Spring4Shell Vulnerability CVE-2022-22965 to Deploy Cryptocurrency Miners

2022-04-20 00:00:00

redhat

(RHSA-2022:1627) Low: Red Hat AMQ Broker 7.9.4 release and security update

2022-04-27 09:45:16

(RHSA-2022:1626) Low: Red Hat AMQ Broker 7.8.6 release and security update

2022-04-27 09:45:11

(RHSA-2022:1333) Low: Red Hat Integration Camel-K 1.6.5 security update

2022-04-12 18:28:41

ubuntucve

CVE-2022-22965

2022-04-01 00:00:00

nuclei

Spring - Remote Code Execution

2022-04-01 11:43:45

attackerkb

CVE-2022-22965

2022-04-01 00:00:00

spring

Spring Framework RCE, Mitigation Alternative

2022-04-01 11:49:00

Spring Framework Data Binding Rules Vulnerability (CVE-2022-22968)

2022-04-13 13:00:00

Spring Framework RCE, Early Announcement

2022-03-31 10:27:00

osv

Remote Code Execution in Spring Framework

2022-03-31 18:30:50

CVE-2022-22965

2022-04-01 23:15:13

prion

Remote code execution

2022-04-01 23:15:00

Design/Logic Flaw

2023-07-26 14:15:00

debiancve

CVE-2022-22965

2022-04-01 23:15:13

hivepro

RCE Spring Framework Zero-Day vulnerability “Spring4Shell”

2022-04-12 02:21:11

Weekly Threat Digest: 4 – 10 April 2022

2022-04-13 06:34:35

Weekly Threat Digest: 28 March – 3 April 2022

2022-04-05 10:11:43

cloudfoundry

CVE-2022-22965: UAA affected by Spring Framework RCE via Data Binding on JDK 9+ | Cloud Foundry

2022-04-05 00:00:00

cisco

Vulnerability in Spring Framework Affecting Cisco Products: March 2022

2022-04-01 23:45:00

checkpoint_advisories

Spring Core Remote Code Execution (CVE-2022-22965)

2022-03-31 00:00:00

cve

CVE-2022-22965

2022-04-01 23:15:13

CVE-2022-43712

2023-07-26 14:15:09

kitploit

Spring4Shell-POC - Dockerized Spring4Shell (CVE-2022-22965) PoC Application And Exploit

2022-05-10 12:30:00

Spring4Shell-Scan - A Fully Automated, Reliable, And Accurate Scanner For Finding Spring4Shell And Spring Cloud RCE Vulnerabilities

2022-04-24 21:30:00

metasploit

Spring Framework Class property RCE (Spring4Shell)

2022-04-07 13:22:18

cisa_kev

Spring Framework JDK 9+ Remote Code Execution Vulnerability

2022-04-04 00:00:00

github

Remote Code Execution in Spring Framework

2022-03-31 18:30:50

zdt

Spring4Shell Spring Framework Class Property Remote Code Execution Exploit

2022-05-10 00:00:00

ics

Hitachi Energy Lumada Asset Performance Management Prognostic Model Executor Service

2022-10-13 12:00:00

qualysblog

Spring Framework Zero-Day Remote Code Execution (Spring4Shell) Vulnerability

2022-03-31 09:00:00

Why Is Snapshot Scanning Not Enough?

2022-11-01 13:27:50

The January 2023 Oracle Critical Patch Update

2023-01-18 00:43:03

fortinet

CVE-2022-22965 and CVE-2022-22963 vulnerabilities

2022-04-01 00:00:00

paloalto

Informational: Impact of Spring Vulnerabilities CVE-2022-22963 and CVE-2022-22965

2022-03-31 02:30:00

K11510688 : Spring Framework (Spring4Shell) and Spring Cloud vulnerabilities CVE-2022-22965, CVE-2022-22950, and CVE-2022-22963

2022-03-31 00:00:00

cert

Spring Framework insecurely handles PropertyDescriptor objects with data binding

2022-03-31 00:00:00

cisa

Spring Releases Security Updates Addressing "Spring4Shell" and Spring Cloud Function Vulnerabilities

2022-04-01 00:00:00

securelist

IT threat evolution Q2 2022

2022-08-15 12:00:34

Spring4Shell (CVE-2022-22965): details and mitigations

2022-04-04 15:30:36

avleonov

Spring4Shell, Spring Cloud Function RCE and Spring Cloud Gateway Code Injection

2022-04-03 00:15:45

trellix

The Bug Report – June 2022 Edition

2022-07-06 00:00:00

The Bug Report – June 2022 Edition

2022-07-06 00:00:00

The Bug Report – April 2022 Edition

2022-05-04 00:00:00

mmpc

SpringShell RCE vulnerability: Guidance for protecting against and detecting CVE-2022-22965

2022-04-05 01:11:24

mssecure

SpringShell RCE vulnerability: Guidance for protecting against and detecting CVE-2022-22965

2022-04-05 01:11:24

impervablog

Imperva Protects from New Spring Framework Zero-Day Vulnerabilities

2022-03-31 15:20:03

malwarebytes

4 over-hyped security vulnerabilities of 2022

2022-12-19 01:00:00

checkpoint_security

Check Point Response to Spring Vulnerabilities CVE-2022-22963, CVE-2022-22946, CVE-2022-22947, CVE-2022-22965 (Spring4Shell) and CVE-2022-22950

2022-03-30 21:41:02

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.975 High

EPSS

Percentile

100.0%

JSON

Related for VERACODE:34883