CISA Warns of Active Exploitation of Critical Spring4Shell Vulnerability

Discussion in 'News Aggregator' started by Ravie Lakshmanan, 5 Apr 2022.

  1. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added the recently disclosed remote code execution (RCE) vulnerability affecting the Spring Framework, to its Known Exploited Vulnerabilities Catalog based on "evidence of active exploitation." The critical severity flaw, assigned the identifier CVE-2022-22965 (CVSS score: 9.8) and dubbed "Spring4Shell", impacts Spring

    Continue reading...
     

Share This Page

Loading...