CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated)

March 31, 2022, 11:30 p.m. | Haozhe Zhang

CVE-2022-22965, aka SpringShell, is a remote code execution vulnerability in the Spring Framework. We provide a root cause analysis and mitigations.

The post CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) appeared first on Unit42.

code code execution cve cve-2022-22963 cve-2022-22965 exploit in the wild remote code execution spring spring core springshell threat brief vulnerability vulnerability exploited

Visit resource

More from unit42.paloaltonetworks.com / Unit42

Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 3 weeks, 4 days ago | unit42.paloaltonetworks.com

campaign command command injection cve +13

Muddled Libra’s Evolution to the Cloud 4 weeks ago | unit42.paloaltonetworks.com

amp applications att aws +17

It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise 4 weeks ago | unit42.paloaltonetworks.com

advanced threat prevention advanced url filtering advanced wildfire attacks +14

Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) 1 month, 1 week ago | unit42.paloaltonetworks.com

compression cortex xdr cortex xsiam cve +17

Exposing a New BOLA Vulnerability in Grafana 1 month, 1 week ago | unit42.paloaltonetworks.com

advanced url filtering api api attacks authorization +19

ASEAN Entities in the Spotlight: Chinese APT Group Targeting 1 month, 1 week ago | unit42.paloaltonetworks.com

actions advanced persistent threat advanced url filtering apac +20

Large-Scale StrelaStealer Campaign in Early 2024 1 month, 2 weeks ago | unit42.paloaltonetworks.com

advanced threat protection advanced wildfire campaign campaigns +16

Curious Serpens’ FalseFont Backdoor: Technical Analysis, Detection and Prevention 1 month, 2 weeks ago | unit42.paloaltonetworks.com

advanced threat prevention advanced url filtering advanced wildfire aerospace +25

Unit 42 Collaborative Research With Ukraine’s Cyber Agency To Uncover the Smoke Loader Backdoor 1 month, 2 weeks ago | unit42.paloaltonetworks.com

advanced threat prevention advanced url filtering advanced wildfire agency +21

Product Regulatory Compliance Specialist

@ Avery Dennison | Oegstgeest, Netherlands

View on infosec-jobs.com

Cyber Security Analyst

@ FinClear | Melbourne, Australia

View on infosec-jobs.com

Senior Application Security Manager, United States-(Virtual)

@ Stanley Black & Decker | New Britain CT USA - 1000 Stanley Dr

View on infosec-jobs.com

Vice President - Information Security Management - FedRAMP

@ JPMorgan Chase & Co. | Chicago, IL, United States

View on infosec-jobs.com

Vice President, Threat Intelligence & AI

@ Arctic Wolf | Remote - Minnesota

View on infosec-jobs.com

Cybersecurity Analyst

@ Resource Management Concepts, Inc. | Dahlgren, Virginia, United States

View on infosec-jobs.com

View more jobs

all InfoSec news

CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated)

More from unit42.paloaltonetworks.com / Unit42

Jobs in InfoSec / Cybersecurity

Product Regulatory Compliance Specialist

Cyber Security Analyst

Senior Application Security Manager, United States-(Virtual)

Vice President - Information Security Management - FedRAMP

Vice President, Threat Intelligence & AI

Cybersecurity Analyst