Spring Scan Analysis
1 Votes |
Description
This is Community Content. When you use these solutions, it is incumbent on your organization to test any solutions provided across the broadest available system base including various OS, storage solutions, and application inventory.
Please see the Community Solution Testing Statement
This Analysis retrieves results of a filesystem scan to attempt detecting Spring Framework versions that may be vulnerable to one of the following vulnerabilties reported in March 2022:
https://tanzu.vmware.com/security/cve-2022-22965
https://tanzu.vmware.com/security/cve-2022-22963
https://tanzu.vmware.com/security/cve-2022-22950
https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement
This Analysis attempts to detect the presence and versions of Spring frameworks, without distinction between vulnerable or updated versions. These results should be considered only a starting point in determining whether a system is actually vulnerable, along with other information such as the version of Java Virtual Machine and specific application or code configurations as referenced in the security bulletins above.
Property Details
2998672 | |
Alpha - Code that was just developed | |
Spring Scan Analysis | |
BESC | |
Spring, vulnerability, scan, cve-2022-22950, cve-2022-22963, cve-2022-22965 | |
JasonWalker on 4/1/2022 2:11:07 PM | |
JasonWalker on 4/1/2022 2:11:07 PM | |
2039 Views / 55 Downloads | |
![]() ![]() ![]() ![]() ![]() |
Properties
* Results in a true/false |

* Results in a true/false |

* Results in a true/false |

Relevance

Used in 1 analsis | * Results in a true/false |

Sharing
Social Media: |