CVE-2022-22965

MITRE NVD CVE.ORG Print: PDF PDF

Summary

CVECVE-2022-22965
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2022-04-01 23:15:00 UTC
Updated2023-02-09 02:07:00 UTC
DescriptionA Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is not vulnerable to the exploit. However, the nature of the vulnerability is more general, and there may be other ways to exploit it.

Risk And Classification

EPSS: 0.944280000 probability, percentile 0.999830000 (date 2026-04-01)

CISA KEV: Listed on 2022-04-04; due 2022-04-25; ransomware use Unknown

Problem Types: CWE-94

CISA Known Exploited Vulnerability

VendorVMware
ProductSpring Framework
NameSpring Framework JDK 9+ Remote Code Execution Vulnerability
Required ActionApply updates per vendor instructions.
Noteshttps://nvd.nist.gov/vuln/detail/CVE-2022-22965

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Application Cisco Cx Cloud Agent All All All All
Application Oracle Commerce Platform 11.3.2 All All All
Application Oracle Communications Cloud Native Core Automated Test Suite 1.9.0 All All All
Application Oracle Communications Cloud Native Core Automated Test Suite 22.1.0 All All All
Application Oracle Communications Cloud Native Core Binding Support Function 22.1.3 All All All
Application Oracle Communications Cloud Native Core Console 1.9.0 All All All
Application Oracle Communications Cloud Native Core Console 22.1.0 All All All
Application Oracle Communications Cloud Native Core Network Exposure Function 22.1.0 All All All
Application Oracle Communications Cloud Native Core Network Function Cloud Native Environment 1.10.0 All All All
Application Oracle Communications Cloud Native Core Network Function Cloud Native Environment 22.1.0 All All All
Application Oracle Communications Cloud Native Core Network Repository Function 1.15.0 All All All
Application Oracle Communications Cloud Native Core Network Repository Function 22.1.0 All All All
Application Oracle Communications Cloud Native Core Network Slice Selection Function 1.15.0 All All All
Application Oracle Communications Cloud Native Core Network Slice Selection Function 1.8.0 All All All
Application Oracle Communications Cloud Native Core Network Slice Selection Function 22.1.0 All All All
Application Oracle Communications Cloud Native Core Policy 1.15.0 All All All
Application Oracle Communications Cloud Native Core Policy 22.1.0 All All All
Application Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0 All All All
Application Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.0 All All All
Application Oracle Communications Cloud Native Core Unified Data Repository 1.15.0 All All All
Application Oracle Communications Cloud Native Core Unified Data Repository 22.1.0 All All All
Application Oracle Communications Policy Management 12.6.0.0.0 All All All
Application Oracle Communications Unified Inventory Management 7.4.1 All All All
Application Oracle Communications Unified Inventory Management 7.4.2 All All All
Application Oracle Communications Unified Inventory Management 7.5.0 All All All
Application Oracle Financial Services Analytical Applications Infrastructure 8.1.1 All All All
Application Oracle Financial Services Analytical Applications Infrastructure 8.1.2.0 All All All
Application Oracle Financial Services Behavior Detection Platform 8.1.1.0 All All All
Application Oracle Financial Services Behavior Detection Platform 8.1.1.1 All All All
Application Oracle Financial Services Behavior Detection Platform 8.1.2.0 All All All
Application Oracle Financial Services Enterprise Case Management 8.1.1.0 All All All
Application Oracle Financial Services Enterprise Case Management 8.1.1.1 All All All
Application Oracle Financial Services Enterprise Case Management 8.1.2.0 All All All
Application Oracle Mysql Enterprise Monitor All All All All
Application Oracle Product Lifecycle Analytics 3.6.1 All All All
Application Oracle Retail Bulk Data Integration 16.0.3 All All All
Application Oracle Retail Customer Management And Segmentation Foundation 17.0 All All All
Application Oracle Retail Customer Management And Segmentation Foundation 18.0 All All All
Application Oracle Retail Customer Management And Segmentation Foundation 19.0 All All All
Application Oracle Retail Financial Integration 14.1.3.2 All All All
Application Oracle Retail Financial Integration 15.0.3.1 All All All
Application Oracle Retail Financial Integration 16.0.3 All All All
Application Oracle Retail Financial Integration 19.0.1 All All All
Application Oracle Retail Integration Bus 14.1.3.2 All All All
Application Oracle Retail Integration Bus 15.0.3.1 All All All
Application Oracle Retail Integration Bus 16.0.3 All All All
Application Oracle Retail Integration Bus 19.0.1 All All All
Application Oracle Retail Merchandising System 16.0.3 All All All
Application Oracle Retail Merchandising System 19.0.1 All All All
Application Oracle Retail Xstore Point Of Service 20.0.1 All All All
Application Oracle Retail Xstore Point Of Service 21.0.0 All All All
Application Oracle Sd-wan Edge 9.0 All All All
Application Oracle Sd-wan Edge 9.1 All All All
Application Oracle Weblogic Server 12.2.1.3.0 All All All
Application Oracle Weblogic Server 12.2.1.4.0 All All All
Application Oracle Weblogic Server 14.1.1.0.0 All All All
Application Siemens Operation Scheduler All All All All
Application Siemens Simatic Speech Assistant For Machines All All All All
Application Siemens Sinec Network Management System All All All All
Application Siemens Sipass Integrated 2.80 All All All
Application Siemens Sipass Integrated 2.85 All All All
Application Siemens Siveillance Identity 1.5 All All All
Application Siemens Siveillance Identity 1.6 All All All
Application Veritas Access Appliance 7.4.3 All All All
Application Veritas Access Appliance 7.4.3.100 All All All
Application Veritas Access Appliance 7.4.3.200 All All All
Application Veritas Flex Appliance 1.3 All All All
Application Veritas Flex Appliance 2.0 All All All
Application Veritas Flex Appliance 2.0.1 All All All
Application Veritas Flex Appliance 2.0.2 All All All
Application Veritas Flex Appliance 2.1 All All All
Hardware Veritas Netbackup Appliance 4.0 All All All
Hardware Veritas Netbackup Appliance 4.0.0.1 maintenance_release1 All All
Hardware Veritas Netbackup Appliance 4.0.0.1 maintenance_release2 All All
Hardware Veritas Netbackup Appliance 4.0.0.1 maintenance_release3 All All
Hardware Veritas Netbackup Appliance 4.1 All All All
Hardware Veritas Netbackup Appliance 4.1.0.1 maintenance_release1 All All
Hardware Veritas Netbackup Appliance 4.1.0.1 maintenance_release2 All All
Application Veritas Netbackup Flex Scale Appliance 2.1 All All All
Application Veritas Netbackup Flex Scale Appliance 3.0 All All All
Hardware Veritas Netbackup Virtual Appliance 4.0 All All All
Hardware Veritas Netbackup Virtual Appliance 4.0.0.1 maintenance_release1 All All
Hardware Veritas Netbackup Virtual Appliance 4.0.0.1 maintenance_release2 All All
Hardware Veritas Netbackup Virtual Appliance 4.0.0.1 maintenance_release3 All All
Hardware Veritas Netbackup Virtual Appliance 4.1 All All All
Hardware Veritas Netbackup Virtual Appliance 4.1.0.1 maintenance_release1 All All
Hardware Veritas Netbackup Virtual Appliance 4.1.0.1 maintenance_release2 All All
Application Vmware Spring Framework All All All All

References

ReferenceSourceLinkTags
CVE-2022-22965: Spring Framework RCE via Data Binding on JDK 9+ | Security | VMware Tanzu MISC tanzu.vmware.com
Spring4Shell Code Execution ≈ Packet Storm MISC packetstormsecurity.com
Oracle Critical Patch Update Advisory - April 2022 MISC www.oracle.com
cert-portal.siemens.com/productcert/pdf/ssa-254054.pdf CONFIRM cert-portal.siemens.com
20220401 Vulnerability in Spring Framework Affecting Cisco Products: March 2022 CISCO tools.cisco.com
Spring4Shell Spring Framework Class Property Remote Code Execution ≈ Packet Storm MISC packetstormsecurity.com
Security Advisory CONFIRM psirt.global.sonicwall.com
Oracle Critical Patch Update Advisory - July 2022 N/A www.oracle.com
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis
CISA Known Exploited Vulnerabilities catalog CISA www.cisa.gov kev

Legacy QID Mappings

  • 150494 Spring Core Remote Code Execution (RCE) Vulnerability (Spring4Shell)
  • 150495 Spring Core Remote Code Execution (RCE) Vulnerability CVE-2022-22965 (Spring4Shell)
  • 356282 Amazon Linux Security Advisory for tomcat : ALASTOMCAT9-2023-004
  • 356303 Amazon Linux Security Advisory for tomcat : ALASTOMCAT8.5-2023-005
  • 376506 Spring Framework Remote Code Execution (RCE) Vulnerability (Spring4Shell)
  • 376514 Spring Framework Remote Code Execution (RCE) Vulnerability (Spring4Shell) Scan Utility
  • 591277 Siemens SINEC NMS Remote Code Execution (RCE) Vulnerability (SSA-254054)
  • 730416 Spring Core Remote Code Execution (RCE) Vulnerability (Spring4Shell) (Unauthenticated Check)
  • 730482 Atlassian Jira Spring Framework Remote Code Execution (RCE) Vulnerability (JRASERVER-73773)
  • 730516 Atlassian Confluence Server and Confluence Data Center Remote Code Execution (RCE) Vulnerability (CONFSERVER-78586)
  • 87490 Cisco Data Center Network Manager Spring4Shell Vulnerability (CSCwb43637)
  • 984158 Java (maven) Security Update for org.springframework.boot:spring-boot-starter-webflux (GHSA-36p3-wjmg-h94x)
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report