all InfoSec news
Security Advisory: Apache Commons Text Remote Code Execution Vulnerability (CVE-2022-42889)
Security Boulevard securityboulevard.com
Background:
On 13th Oct 2022 the Apache Software Foundation released a security advisory mentioning the patch and mitigation details to address a remote code execution vulnerability CVE-2022-42889. Same vulnerability has created too much buzz in the last several hours, especially after PoC showcasing verification of the vulnerability was published.
Apache Commons Text library contains a set of Java classes that contain algorithms for measuring and manipulating strings. It helps in performing variable interpolation provided by attributes such as "$prefix:name" that …
advisory apache apache commons apache commons text code code execution commons cve cve-2022-42889 remote code execution security security advisory text vulnerability