SamPirok
Community Manager
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
04-04-2022
11:59 AM
Please be advised that SA-2022-003 has been published. This is a first in a series of "Spring4Shell" advisories.
Security Advisory Link: Security Advisory: SA-2022-003 – "Spring4Shell" (CVE-2022-22965) | Extreme Portal (force.com)
Summary:
A Spring MVC or Spring WebFlux application may be vulnerable to remote code execution (RCE) via data binding. You can find a list of all products and whether or not they are effected by this advisory in the article linked above.
6 Comments
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.