Skip to content
This repository has been archived by the owner on Apr 9, 2024. It is now read-only.

Feature Request: Detection of 0 day Spring RCE vulnerability (spring4shell) #1

Open
KnutPape opened this issue Mar 31, 2022 · 0 comments
Open

Feature Request: Detection of 0 day Spring RCE vulnerability (spring4shell) #1

KnutPape opened this issue Mar 31, 2022 · 0 comments

Comments

@KnutPape
Copy link

See:
https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement#suggested-workarounds
https://blog.sonatype.com/new-0-day-spring-framework-vulnerability-confirmed
https://www.rapid7.com/blog/post/2022/03/30/spring4shell-zero-day-vulnerability-in-spring-framework/

Requirement:

  • Add spring jars / hashvalues, especiall spring-beans, spring-mvc, spring-webflux versins below 5.3.18 and 5.2.20.
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@KnutPape