CVE•Published 2022-04-01•1 article on news•7 live references•NVD data
CVE-2022-22965
Vulnerability data via CVEDB (Shodan)
CVSS v3.1
9.8
CRITICAL
EPSS percentile
100
Exploit Prediction Scoring System · top 0% of all CVEs
Description
A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is not vulnerable to the exploit. However, the nature of the vulnerability is more general, and there may be other ways to exploit it.
Timeline
Published 2022-04-01
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
Shodan · vuln tag45 hosts
vuln:CVE-2022-22965Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · product
product:"Cisco Cx Cloud Agent"All exposed Cisco Cx Cloud Agent instances — cross-reference with the CVE's affected-version range.
Shodan · banner/body mention
http.html:"Cx Cloud Agent"HTTP body or banner mentions "Cx Cloud Agent" — catches deploys Shodan didn't identify as a product.
More intel sources (5)
Shodan report
vuln:CVE-2022-22965Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2022-22965Censys host search filtered to this CVE id.
grep.app
CVE-2022-22965Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2022-22965GitHub code search for direct mentions.
Google dork
"CVE-2022-22965" exploit -site:nvd.nist.govWrite-ups and news, NVD excluded.
Known PoCs on GitHub (8)
CVE-2022-229658 repos
imthenachoman/How-To-Secure-A-Linux-Serverunknown
An evolving how-to guide for securing a Linux server.
Mr-xn/Penetration_Testing_POCHTML
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypas…
Threekiii/Awesome-POCJava
一个漏洞 PoC 知识库。A knowledge base for vulnerability PoCs(Proof of Concept), with 1k+ vulnerabilities.
alexandreborges/malwoverviewPython
Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage,…
brootware/awesome-cyber-security-universityunknown
🎓 Because Education should be free. Contributions welcome! 🕵️
AabyssZG/SpringBoot-ScanPython
针对SpringBoot的开源渗透框架,以及Spring相关高危漏洞利用工具
Y4tacker/JavaSecJava
a rep for documenting my study, may be from 0 to 0.1
wapiti-scanner/wapitiPython
Web vulnerability scanner written in Python3