Versions Compared

Old Version 17

changes.mady.by.user Elias Brattli Sørensen

Saved on

compared with

New Version Current

changes.mady.by.user Elias Brattli Sørensen

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

It was recently confirmed that Spring4Shell has at least one RCE vulnerability in the Spring framerwork. Investigation is still in progress, and you can expect updates as analyses get further. So far ( 21:00 CET) we point to these sources:


Is Kantega SSO Enterprise affected?

...


We recommend consulting with your security team and keep following updates on the CVE and Spring’s documentation for updates about more attack vectors, as well as updates and announcements from Atlassian’s security team. Keep checking for important security updates available on your system.
Stay tuned for Atlassian’s public Atlassian has published security advisories , which are usually posted here: https://confluence.atlassian.com/security/articles-951406100.html, and their FAQ’s which are usually posted here: https://confluence.atlassian.com/kb/atlassian-knowledge-base-179443510.html kb/faq-for-cve-2022-22963-cve-2022-22965-1115149136.html.

These are the requirements for being vulnerable from the specific scenario from the Spring report (as of 20:30 CET):

  • Running JDK 9 or higher

  • Apache Tomcat as the Servlet container

  • Packaged as WAR

  • spring-webmvc or spring-webflux dependency:

    • Uses Spring MVC (5.3.15 and at least down to 4.3.0, possibly further)

  • Endpoint using @RequestMapping, aka. Spring parameter binding

  • Request parameter is of type object which maps to a POJO

    • Vulnerable: @NotNull DataObject data

    • Not vulnerable: @NotNull String string

...


Sources

Info

Changelog

  • Add link to Atlassian documentation 19.30 CET

  • Rewrite general advice 20:50 CET

  • Initial publication 20:30 CET

...