all InfoSec news
New Spring Framework RCE Vulnerability Confirmed – What to do?
Security Boulevard securityboulevard.com
Early Wednesday morning (GMT), allegations began to appear on the internet about a new remote code execution flaw that affects Spring Core. This vulnerability, dubbed by some as "Springshell" in the community, is a new, previously unknown security vulnerability.
Exclamation Circle icon NOTE: A separate Spring vulnerability CVE-2021-22963 (High) disclosed a few days ago impacts Spring Cloud Function. This is a Spring Expression language SpEL vulnerability in Spring Cloud Function and is NOT related to "Springshell" that impacts Spring Core. …
component vulnerabilities devzone featured framework rce spring vulnerability