CVE-2022-22965

[trickest-workflows]

CVE-2022-22965

Description

A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is not vulnerable to the exploit. However, the nature of the vulnerability is more general, and there may be other ways to exploit it.

POC

Reference

• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-java-spring-rce-Zx9GUc67

Github

• https://github.com/GuayoyoCyber/CVE-2022-22965
• https://github.com/LudovicPatho/CVE-2022-22965_Spring4Shell
• https://github.com/cxzero/CVE-2022-22965-spring4shell
• https://github.com/GuayoyoCyber/CVE-2022-22965
• https://github.com/0xrobiul/CVE-2022-22965
• https://github.com/0zvxr/CVE-2022-22965
• https://github.com/4nth0ny1130/spring4shell_behinder
• https://github.com/ADP-Dynatrace/dt-appsec-powerup
• https://github.com/ARPSyndicate/cvemon
• https://github.com/ARPSyndicate/kenzer-templates
• https://github.com/AlphabugX/CVE-2022-RCE
• https://github.com/Axx8/SpringFramework_CVE-2022-22965_RCE
• https://github.com/Bl0omZ/JAVAExploitStudy
• https://github.com/BobTheShoplifter/Spring4Shell-POC
• https://github.com/CLincat/vulcat
• https://github.com/CalumHutton/CVE-2022-22965-PoC_Payara
• https://github.com/DDuarte/springshell-rce-poc
• https://github.com/DataDog/security-labs-pocs
• https://github.com/Enokiy/cve_learning_record
• https://github.com/Expl0desploit/CVE-2022-22965
• https://github.com/FourCoreLabs/spring4shell-exploit-poc
• https://github.com/GibzB/THM-Captured-Rooms
• https://github.com/GoogleCloudPlatform/security-analytics
• https://github.com/GuayoyoCyber/CVE-2022-22965
• https://github.com/HackJava/HackSpring
• https://github.com/Joe1sn/CVE-2022-22965
• https://github.com/Kirill89/CVE-2022-22965-PoC
• https://github.com/Loneyers/Spring4Shell
• https://github.com/LudovicPatho/CVE-2022-22965_Spring4Shell
• https://github.com/Mr-xn/Penetration_Testing_POC
• https://github.com/Mr-xn/spring-core-rce
• https://github.com/NCSC-NL/spring4shell
• https://github.com/NodyHub/fifi
• https://github.com/Omaraitbenhaddi/-Spring4Shell-CVE-2022-22965-
• https://github.com/OverflowMyBuffers/Spring4ShellScanner
• https://github.com/Pear1y/Vuln-Env
• https://github.com/PetrusViet/Poc-Spring4Shell-Jetty
• https://github.com/Qualys/spring4scanwin
• https://github.com/Retrospected/spring-rce-poc
• https://github.com/RogerSugit/spring_onekeyshell
• https://github.com/SeanWrightSec/spring-rce-poc
• https://github.com/Snip3R69/spring-shell-vuln
• https://github.com/TheGejr/SpringShell
• https://github.com/Threekiii/Awesome-Exploit
• https://github.com/Will-Beninger/CVE-2022-22965_SpringShell
• https://github.com/WingsSec/Meppo
• https://github.com/Wrin9/CVE-2022-22965
• https://github.com/Wrin9/POC
• https://github.com/XRSec/AWVS14-Update
• https://github.com/XuCcc/VulEnv
• https://github.com/Y4tacker/JavaSec
• https://github.com/alt3kx/CVE-2022-22965
• https://github.com/alt3kx/CVE-2022-22965_PoC
• https://github.com/alt3kx/alt3kx.github.io
• https://github.com/anair-it/springshell-vuln-POC
• https://github.com/avergnaud/spring4shell-intro
• https://github.com/basu1706/590JFinalProject
• https://github.com/binganao/vulns-2022
• https://github.com/bollwarm/SecToolSet
• https://github.com/bowwowxx/spring4Shell
• https://github.com/brootware/awesome-cyber-security-university
• https://github.com/c4mx/CVE-2022-22965_PoC
• https://github.com/chaosec2021/EXP-POC
• https://github.com/chaosec2021/fscan-POC
• https://github.com/chenzhouwen/vul-check
• https://github.com/coffeehb/Spring4Shell
• https://github.com/colincowie/Safer_PoC_CVE-2022-22965
• https://github.com/cxzero/CVE-2022-22965-spring4shell
• https://github.com/cybersecurityworks553/spring4shell-exploit
• https://github.com/daniel0x00/Invoke-CVE-2022-22965-SafeCheck
• https://github.com/datawiza-inc/spring-rec-demo
• https://github.com/dtact/spring4shell-scanner
• https://github.com/edsonjt81/spring4shell
• https://github.com/edsonjt81/spring4shell-scan
• https://github.com/fracturelabs/go-scan-spring
• https://github.com/fracturelabs/spring4shell_victim
• https://github.com/fransvanbuul/CVE-2022-22965-susceptibility
• https://github.com/fullhunt/spring4shell-scan
• https://github.com/getastra/hypejab
• https://github.com/gog1071/Spring4Shell-CVE-2022-22965
• https://github.com/gpiechnik2/nmap-spring4shell
• https://github.com/hab1b0x/Spring4Shell
• https://github.com/hillu/local-spring-vuln-scanner
• https://github.com/hktalent/TOP
• https://github.com/irgoncalves/f5-waf-enforce-sig-Spring4Shell
• https://github.com/irgoncalves/irule-cve-2022-22965
• https://github.com/itsecurityco/CVE-2022-22965
• https://github.com/iwarsong/CVE-2022-22965-POC
• https://github.com/j4k0m/spring4shell-secdojo
• https://github.com/jfrog/jfrog-spring-tools
• https://github.com/jrgdiaz/Spring4Shell-CVE-2022-22965.py
• https://github.com/jschauma/check-springshell
• https://github.com/justmumu/SpringShell
• https://github.com/k3rwin/spring-core-rce
• https://github.com/kevin-s31/spring-bean
• https://github.com/kh4sh3i/Spring-CVE
• https://github.com/khidottrivi/CVE-2022-22965
• https://github.com/kongjiexi/reznok-Spring4Shell-POC
• https://github.com/lamyongxian/crmmvc
• https://github.com/lcarea/CVE-2022-22965
• https://github.com/liangyueliangyue/spring-core-rce
• https://github.com/light-Life/CVE-2022-22965-GUItools
• https://github.com/likewhite/CVE-2022-22965
• https://github.com/luoqianlin/CVE-2022-22965
• https://github.com/mariomamo/CVE-2022-22965
• https://github.com/matheuscezar/spring4shell-massive-scan
• https://github.com/me2nuk/CVE-2022-22965
• https://github.com/mebibite/springhound
• https://github.com/metaStor/SpringScan
• https://github.com/mirsaes/cyao2pdf
• https://github.com/mwojterski/cve-2022-22965
• https://github.com/n11dc0la/PocSuite_POC
• https://github.com/nBp1Ng/SpringFramework-Vul
• https://github.com/netcode/Spring4shell-CVE-2022-22965-POC
• https://github.com/nomi-sec/PoC-in-GitHub
• https://github.com/nu0l/CVE-2022-22965
• https://github.com/onurgule/S4S-Scanner
• https://github.com/p1ay8y3ar/cve_monitor
• https://github.com/queencitycyber/Spring4Shell-cURL
• https://github.com/radiusmethod/awesome-gists
• https://github.com/rainboyan/grails-issue-12460-demo
• https://github.com/rajasoun/spring4shell-tomcat
• https://github.com/redhuntlabs/Hunt4Spring
• https://github.com/renovatebot/spring-remediations
• https://github.com/reznok/Spring4Shell-POC
• https://github.com/rtkwlf/wolf-tools
• https://github.com/rwincey/spring4shell-CVE-2022-22965
• https://github.com/shengshengli/fscan-POC
• https://github.com/sinjap/spring4shell
• https://github.com/snicoll-scratches/spring-boot-cve-2022-22965
• https://github.com/sunnyvale-it/CVE-2022-22965-PoC
• https://github.com/superfish9/pt
• https://github.com/t3amj3ff/Spring4ShellPoC
• https://github.com/talentsec/SpringShell
• https://github.com/tangxiaofeng7/CVE-2022-22965-Spring-Core-Rce
• https://github.com/test502git/awvs14-scan
• https://github.com/thenurhabib/s4sScanner
• https://github.com/thomasvincent/springshell
• https://github.com/tpt11fb/SpringVulScan
• https://github.com/trhacknon/Spring4Shell-POC
• https://github.com/tweedge/springcore-0day-en
• https://github.com/twseptian/cve-2022-22965
• https://github.com/viniciuspereiras/CVE-2022-22965-poc
• https://github.com/wcoreiron/Sentinel_Analtic_Rules
• https://github.com/webraybtl/springcore_detect
• https://github.com/west-wind/Spring4Shell-Detection
• https://github.com/west-wind/Threat-Hunting-With-Splunk
• https://github.com/whitesource/spring4shell-detect
• https://github.com/wikiZ/springboot_CVE-2022-22965
• https://github.com/wjl110/CVE-2022-22965_Spring_Core_RCE
• https://github.com/wshon/spring-framework-rce
• https://github.com/xnderLAN/CVE-2022-22965
• https://github.com/zer0yu/CVE-2022-22965
• https://github.com/zjc9/mytools
• https://github.com/zjx/Spring4Shell-RCE