all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Security Patch Releases for Critical Zero-Day Bug in Java Spring Framework

Add to bookmarks
April 5, 2022, 3:15 a.m. | noreply@blogger.com (Ravie Lakshmanan)

The Hacker News thehackernews.com

The maintainers of Spring Framework have released an emergency patch to address a newly disclosed remote code execution flaw that, if successfully exploited, could allow an unauthenticated attacker to take control of a targeted system.
Tracked as CVE-2022-22965, the high-severity flaw impacts Spring Framework versions 5.3.0 to 5.3.17, 5.2.0 to 5.2.19, and other older, unsupported versions. Users

bug critical framework java patch releases security spring spring framework

Visit resource

More from thehackernews.com / The Hacker News

New TunnelVision Attack Allows Hijacking of VPN Traffic via DHCP Manipulation 6 hours ago | thehackernews.com
attack bypass cve cve-2024 +25
Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign 8 hours ago | thehackernews.com
actor apt28 called campaign +23
New Guide: How to Scale Your vCISO Services Profitably 13 hours ago | thehackernews.com
access business can ciso +18
Mirai Botnet Exploits Ivanti Connect Secure Flaws for Malicious Payload Delivery 13 hours ago | thehackernews.com
authentication authentication bypass botnet bypass +27
Critical F5 Central Manager Vulnerabilities Allow Enable Full Device Takeover 18 hours ago | thehackernews.com
accounts actor administrator attackers +18
A SaaS Security Challenge: Getting Permissions All in One Place 1 day, 10 hours ago | thehackernews.com
access all in apps base +16
New Spectre-Style 'Pathfinder' Attack Targets Intel CPU, Leak Encryption Keys and Data 1 day, 10 hours ago | thehackernews.com
academics advanced advanced encryption aes +30
The Fundamentals of Cloud Security Stress Testing 1 day, 13 hours ago | thehackernews.com
assets attackers cloud cloud security +17
Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version 1 day, 13 hours ago | thehackernews.com
aim analysis anti-analysis bypass +19

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Malware Analyst - TASO / Active Secret

@ Peraton | Arlington, VA, United States
View on infosec-jobs.com

Information Security Engineer

@ Deel | Anywhere (APAC)
View on infosec-jobs.com

Cybersecurity Engineer

@ Booz Allen Hamilton | USA, DC, Washington (1125 15th St NW)
View on infosec-jobs.com

Director, Security Engineering

@ Warner Bros. Discovery | GA Atlanta 1050 Techwood Drive NW
View on infosec-jobs.com

Consultant Senior Securité Réseaux

@ Devoteam | Tunis, Tunisia
View on infosec-jobs.com

SOC Analyst, Mid

@ Peraton | Washington, DC, United States
View on infosec-jobs.com
View more jobs