Exploit for #VU62314 Security features bypass in Pivotal Spring Framework

Cybersecurity Help s.r.o.

Published: 2022-05-12

Vulnerability identifier: #VU62314

Vulnerability risk: Medium

CVSSv4.0: 5.5 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/U:Green]

CVE-ID: CVE-2022-22968

CWE-ID: CWE-254

Exploitation vector: Network

Exploits in database: 1

May 12, 2022
- spring-rce-poc (Testing CVE-2022-22968) [Github]

Vulnerable software:
Pivotal Spring Framework
Server applications / Frameworks for developing and running applications

Vendor: Pivotal