Riccardo Sirchia created an issue |
Issue Type: |
Bug |
---|---|
Assignee: |
Unassigned |
Created: |
01/Apr/22 11:17 AM |
Priority: |
Medium |
Reporter: |
A new vulnerability has been identified in Spring-Framework, exploit allows for Remote Code Execution. Spring-Framwork versions 5.3.17, 5.2.19 and older are vulnerable. Information on the internet is currently being updated. Some background information: https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement https://blog.sonatype.com/new-0-day-spring-framework-vulnerability-confirmed Proposed mitigation: Update to 5.3.18 (or optionally 5.2.20) or higher. |
Get Jira notifications on your phone! Download the Jira Cloud app for Android or iOS |
|
This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100197-sha1:666e164) |