CVE-2022-22978Incorrect Authorization in Vmware Spring Security

CWE-863Incorrect AuthorizationCWE-625Permissive Regular ExpressionCWE-285Improper Authorization10 documents6 sources
Severity
9.8CRITICALNVD
EPSS
90.4%
top 0.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Vmware Spring SecurityOracle Financial Services Crime AND Compliance Management Studio
Timeline
PublishedMay 19
Latest updateApr 15

Description

In spring security versions prior to 5.4.11+, 5.5.7+ , 5.6.4+ and older unsupported versions, RegexRequestMatcher can easily be misconfigured to be bypassed on some servlet containers. Applications using RegexRequestMatcher with `.` in the regular expression are possibly vulnerable to an authorization bypass.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages3 packages

NVDvmware/spring_security5.6.05.6.4+1
CVEListV5vmware/spring_securitySpring security versions 5.4.x prior to 5.4.11+,5.5.x prior to 5.5.7+,5.6.x prior to 5.6.4+ and all earlier unsupported versions

🔴Vulnerability Details

4
GHSA
Authorization bypass in Spring Security2022-05-20
OSV
Authorization bypass in Spring Security2022-05-20
OSV
CVE-2022-22978: In spring security versions prior to 52022-05-19
CVEList
CVE-2022-22978: In spring security versions prior to 52022-05-19

📋Vendor Advisories

5
Oracle
Oracle Oracle Financial Services Applications Risk Matrix: Base (Spring Security) — CVE-2022-229782023-04-15
Oracle
Oracle Oracle Communications Applications Risk Matrix: Message Bus (Spring Security) — CVE-2022-229782023-01-15
Oracle
Oracle Oracle Communications Risk Matrix: Signaling (Spring Security) — CVE-2022-229782022-10-15
Oracle
Oracle Oracle Financial Services Applications Risk Matrix: Studio (Spring Security) — CVE-2022-229782022-07-15
Red Hat
springframework: Authorization Bypass in RegexRequestMatcher2022-05-16
CVE-2022-22978 — Incorrect Authorization in Vmware | cvebase