All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2022-22965
NONEKEVpublish date unavailable
CVSS / 10
// description
Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding.
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2022-04-04 00:00 UTC