CVE-2022-22947

Summary

CVE	CVE-2022-22947
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-03-03 22:15:00 UTC
Updated	2023-07-24 13:47:00 UTC
Description	In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured. A remote attacker could make a maliciously crafted request that could allow arbitrary remote execution on the remote host.

Risk And Classification

EPSS: 0.944610000 probability, percentile 0.999940000 (date 2026-04-01)

CISA KEV: Listed on 2022-05-16; due 2022-06-06; ransomware use Unknown

Problem Types: CWE-917

CISA Known Exploited Vulnerability

Vendor	VMware
Product	Spring Cloud Gateway
Name	VMware Spring Cloud Gateway Code Injection Vulnerability
Required Action	Apply updates per vendor instructions.
Notes	https://nvd.nist.gov/vuln/detail/CVE-2022-22947

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Oracle	Commerce Guided Search	11.3.2	All	All	All
Application	Oracle	Communications Cloud Native Core Binding Support Function	1.11.0	All	All	All
Application	Oracle	Communications Cloud Native Core Binding Support Function	22.1.3	All	All	All
Application	Oracle	Communications Cloud Native Core Console	22.2.0	All	All	All
Application	Oracle	Communications Cloud Native Core Network Exposure Function	22.1.0	All	All	All
Application	Oracle	Communications Cloud Native Core Network Function Cloud Native Environment	1.10.0	All	All	All
Application	Oracle	Communications Cloud Native Core Network Repository Function	1.15.0	All	All	All
Application	Oracle	Communications Cloud Native Core Network Repository Function	1.15.1	All	All	All
Application	Oracle	Communications Cloud Native Core Network Repository Function	22.1.2	All	All	All
Application	Oracle	Communications Cloud Native Core Network Repository Function	22.2.0	All	All	All
Application	Oracle	Communications Cloud Native Core Network Slice Selection Function	1.8.0	All	All	All
Application	Oracle	Communications Cloud Native Core Network Slice Selection Function	22.1.0	All	All	All
Application	Oracle	Communications Cloud Native Core Security Edge Protection Proxy	22.1.1	All	All	All
Application	Oracle	Communications Cloud Native Core Service Communication Proxy	1.15.0	All	All	All
Application	Vmware	Spring Cloud Gateway	All	All	All	All
Application	Vmware	Spring Cloud Gateway	3.1.0	All	All	All

References

Reference	Source	Link	Tags
Oracle Critical Patch Update Advisory - April 2022	MISC	www.oracle.com
CVE-2022-22947: Spring Cloud Gateway Code Injection Vulnerability \| Security \| VMware Tanzu	MISC	tanzu.vmware.com
Spring Cloud Gateway 3.1.0 Remote Code Execution ≈ Packet Storm	MISC	packetstormsecurity.com
Spring Cloud Gateway 3.1.0 Remote Code Execution ≈ Packet Storm	MISC	packetstormsecurity.com
Oracle Critical Patch Update Advisory - July 2022	N/A	www.oracle.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis
CISA Known Exploited Vulnerabilities catalog	CISA	www.cisa.gov	kev

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

150562 Spring Cloud Gateway Remote Code Execution Vulnerability (CVE-2022-22947)