CVE-2022-23463P2CRITICALCVSS 9.8≥ 6.16.2, ≤ 6.16.22022-09-24
CVE-2022-23463 [CRITICAL] CWE-917 CVE-2022-23463: Nepxion Discovery is a solution for Spring Cloud. Discover is vulnerable to SpEL Injection in discov
Nepxion Discovery is a solution for Spring Cloud. Discover is vulnerable to SpEL Injection in discovery-commons. DiscoveryExpressionResolver’s eval method is evaluating expression with a StandardEvaluationContext, allowing the expression to reach and interact with Java classes such as java.lang.Runtime, leading to Remote Code Execution. There is n
nvd