Rewterz Threat Alert – Agent Tesla Malware – Active IOCs
April 5, 2022Rewterz Threat Advisory – CVE-2022-1232 – Google Chrome Extensions Vulnerability
April 6, 2022Rewterz Threat Alert – Agent Tesla Malware – Active IOCs
April 5, 2022Rewterz Threat Advisory – CVE-2022-1232 – Google Chrome Extensions Vulnerability
April 6, 2022Severity
High
Analysis Summary
CVE-2022-22965
Spring Framework could allow a remote attacker to execute arbitrary code on the system, caused by the improper handling of PropertyDescriptor objects used with data binding. By sending specially-crafted data to a Spring Java application, an attacker could exploit this vulnerability to execute arbitrary code on the system. Note: The exploit requires Spring Framework to be run on Tomcat as a WAR deployment with JDK 9 or higher using spring-webmvc or spring-webflux. Note: This vulnerability is also known as Spring4Shell or SpringShell.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2022-22965
Affected Vendors
VMware
Affected Products
- Spring Spring Framework 5.2.2
- Spring Spring Framework 5.3.0
- Spring Spring Framework 5.3.1
- Spring Spring Framework 5.3.2
Remediation
Upgrade to the latest version of Spring Framework, available from the Spring Security Advisory.