CVE-2024-22262

CWE-601 — Open Redirect CWE-918 — Server-Side Request Forgery (SSRF)10 documents8 sources

Severity

8.1HIGH

EPSS

12.6%

top 6.03%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Spring Spring Framework

Timeline

PublishedApr 16

Latest updateOct 15

Description

Applications that use UriComponentsBuilder to parse an externally provided URL (e.g. through a query parameter) AND perform validation checks on the host of the parsed URL may be vulnerable to a open redirect https://cwe.mitre.org/data/definitions/601.html attack or to a SSRF attack if the URL is used after passing validation checks. This is the same as CVE-2024-22259 https://spring.io/security/cve-2024-22259 and CVE-2024-22243 https://spring.io/security/cve-2024-22243 , but with different inpu…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:NExploitability: 2.8 | Impact: 5.2

Affected Packages2 packages

▶CVEListV5spring/spring_framework6.1.x — 6.1.6+2

▶Mavenorg.springframework:spring-web6.0.0 — 6.0.19+2

🔴Vulnerability Details

GHSA

Spring Framework URL Parsing with Host Validation↗2024-04-16

▶

CVEList

CVE-2024-22262: Spring Framework URL Parsing with Host Validation↗2024-04-16

▶

OSV

Spring Framework URL Parsing with Host Validation↗2024-04-16

▶

OSV

CVE-2024-22262: Applications that use UriComponentsBuilder to parse an externally provided URL (e↗2024-04-16

▶

📋Vendor Advisories

Oracle

Oracle Oracle Communications Risk Matrix: BEServer (Spring Framework) — CVE-2024-22262↗2024-10-15

▶

Oracle

Oracle Oracle Commerce Risk Matrix: Content Acquisition System, Workbench (Spring Framework) — CVE-2024-22262↗2024-07-15

▶

Red Hat

springframework: URL Parsing with Host Validation↗2024-04-16

▶

Debian

CVE-2024-22262: libspring-java - Applications that use UriComponentsBuilder to parse an externally provided URL (...↗2024

▶

Atlassian

CVE-2024-22262: SSRF (Server-Side Request Forgery) org.springframework:spring-web Dependency in Confluence Data Center and Server↗

▶