Количество 3
Количество 3
CVE-2022-22963
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources.
CVE-2022-22963
In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources.
GHSA-6v73-fgf6-w5j7
Spring Cloud Function Code Injection with a specially crafted SpEL as a routing expression
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-22963 In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources. | CVSS3: 9.8 | 94% Критический | почти 4 года назад |
 | CVE-2022-22963 In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources. | CVSS3: 9.8 | 94% Критический | почти 4 года назад |
| GHSA-6v73-fgf6-w5j7 Spring Cloud Function Code Injection with a specially crafted SpEL as a routing expression | CVSS3: 9.8 | 94% Критический | почти 4 года назад |
Уязвимостей на страницу