In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HOracle Banking Branch
APPOracle14.5Oracle Banking Cash Management
APPOracle14.5Oracle Banking Corporate Lending Process Management
APPOracle14.5Oracle Banking Credit Facilities Process Management
APPOracle14.5Oracle Banking Electronic Data Exchange For Corporates
APPOracle14.5Oracle Banking Liquidity Management
APPOracle14.214.5Oracle Banking Origination
APPOracle14.5Oracle Banking Supply Chain Finance
APPOracle14.5Oracle Banking Trade Finance Process Management
APPOracle14.5Oracle Banking Virtual Account Management
APPOracle14.5Oracle Communications Cloud Native Core Automated Test Suite
APPOracle1.9.022.1.0Oracle Communications Cloud Native Core Console
APPOracle1.9.022.1.0Oracle Communications Cloud Native Core Network Exposure Function
APPOracle22.1.0Oracle Communications Cloud Native Core Network Function Cloud Native Environment
APPOracle1.10.022.1.022.1.2Oracle Communications Cloud Native Core Network Repository Function
APPOracle1.15.022.1.0Oracle Communications Cloud Native Core Network Slice Selection Function
APPOracle1.8.022.1.0Oracle Communications Cloud Native Core Policy
APPOracle1.15.022.1.022.1.3Oracle Communications Cloud Native Core Security Edge Protection Proxy
APPOracle1.7.022.1.0Oracle Communications Cloud Native Core Unified Data Repository
APPOracle1.15.022.1.0Oracle Communications Communications Policy Management
APPOracle12.6.0.0.0Oracle Financial Services Analytical Applications Infrastructure
APPOracle8.1.1.08.1.2.0Oracle Financial Services Behavior Detection Platform
APPOracle8.1.1.08.1.1.18.1.2.0Oracle Financial Services Enterprise Case Management
APPOracle8.1.1.08.1.1.18.1.2.0Oracle MySQL Enterprise Monitor
APPOracle≤ 8.0.29Oracle Product Lifecycle Analytics
APPOracle3.6.1.0Oracle Retail Xstore Point Of Service
APPOracle20.0.121.0.0Oracle Sd Wan Edge
APPOracle9.09.1VMware Spring Cloud Function
APPVmware≤ 3.1.63.2.0 – 3.2.2
CISA KEV — detailsi
- Vendori
- VMware Tanzu
- Producti
- Spring Cloud
- Added to KEVi
- August 25, 2022
- Remediation deadline (US Federal)i
- September 15, 2022(overdue)
Apply updates per vendor instructions.
When using routing functionality in VMware Tanzu's Spring Cloud Function, it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources.
Related vulnerabilities
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) ...
In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection ...
Forced OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution....
When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache To...
Jenkins versions 2.56 and earlier as well as 2.46.1 LTS and earlier are vulnerable to an unauthenticated remot...