In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured. A remote attacker could make a maliciously crafted request that could allow arbitrary remote execution on the remote host.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/166219/Spring-Cloud-Gateway-3.1.0-Remote-Code-Execution.html | Exploit Third Party Advisory VDB Entry |
http://packetstormsecurity.com/files/168742/Spring-Cloud-Gateway-3.1.0-Remote-Code-Execution.html | Exploit Third Party Advisory VDB Entry |
https://tanzu.vmware.com/security/cve-2022-22947 | Mitigation Vendor Advisory |
https://www.oracle.com/security-alerts/cpuapr2022.html | Patch Third Party Advisory |
https://www.oracle.com/security-alerts/cpujul2022.html | Patch Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
24 Jul 2023, 13:47
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-917 |
28 Oct 2022, 20:41
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) http://packetstormsecurity.com/files/168742/Spring-Cloud-Gateway-3.1.0-Remote-Code-Execution.html - Exploit, Third Party Advisory, VDB Entry |
17 Oct 2022, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 Jul 2022, 02:13
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) http://packetstormsecurity.com/files/166219/Spring-Cloud-Gateway-3.1.0-Remote-Code-Execution.html - Exploit, Third Party Advisory, VDB Entry | |
References | (MISC) https://www.oracle.com/security-alerts/cpuapr2022.html - Patch, Third Party Advisory | |
References | (N/A) https://www.oracle.com/security-alerts/cpujul2022.html - Patch, Third Party Advisory | |
CPE | cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:22.1.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_console:22.2.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:1.11.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.1.2:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.15.1:*:*:*:*:*:*:* cpe:2.3:a:oracle:commerce_guided_search:11.3.2:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.15.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_network_slice_selection_function:1.8.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:22.1.1:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.10.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:22.2.0:*:*:*:*:*:*:* |
|
First Time |
Oracle communications Cloud Native Core Network Exposure Function
Oracle communications Cloud Native Core Network Slice Selection Function Oracle communications Cloud Native Core Binding Support Function Oracle communications Cloud Native Core Service Communication Proxy Oracle communications Cloud Native Core Network Function Cloud Native Environment Oracle communications Cloud Native Core Network Repository Function Oracle commerce Guided Search Oracle Oracle communications Cloud Native Core Security Edge Protection Proxy Oracle communications Cloud Native Core Console |
25 Jul 2022, 18:19
Type | Values Removed | Values Added |
---|---|---|
References |
|
20 Apr 2022, 00:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
17 Mar 2022, 16:47
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://tanzu.vmware.com/security/cve-2022-22947 - Mitigation, Vendor Advisory | |
References | (MISC) http://packetstormsecurity.com/files/166219/Spring-Cloud-Gateway-3.1.0-Remote-Code-Execution.html - Exploit, Third Party Advisory | |
CPE | cpe:2.3:a:vmware:spring_cloud_gateway:3.1.0:*:*:*:*:*:*:* cpe:2.3:a:vmware:spring_cloud_gateway:*:*:*:*:*:*:*:* |
|
CWE | CWE-94 | |
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 10.0 |
First Time |
Vmware spring Cloud Gateway
Vmware |
10 Mar 2022, 17:45
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 Mar 2022, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-03-03 22:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-22947
Mitre link : CVE-2022-22947
CVE.ORG link : CVE-2022-22947
JSON object : View
Products Affected
oracle
- communications_cloud_native_core_binding_support_function
- communications_cloud_native_core_network_slice_selection_function
- communications_cloud_native_core_security_edge_protection_proxy
- commerce_guided_search
- communications_cloud_native_core_service_communication_proxy
- communications_cloud_native_core_network_exposure_function
- communications_cloud_native_core_network_function_cloud_native_environment
- communications_cloud_native_core_network_repository_function
- communications_cloud_native_core_console
vmware
- spring_cloud_gateway