CVE STALKER

CVE-2022-22978

CVSS
DESCRIPTIONIn Spring Security versions 5.5.6 and 5.5.7 and older unsupported versions, RegexRequestMatcher can easily be misconfigured to be bypassed on some servlet containers. Applications using RegexRequestMatcher with `.` in the regular expression are possibly vulnerable to an authorization bypass.
HEAT SCORE314

WORDS

TWEETS

DATE TWEETS USER
2022-06-23 03:40:39CVE-2022-22978 Spring Security RegexRequestMatcher 认证绕过及转发流程分析 https://t.co/Yf2pXuhy99 https://t.co/CIdJiP7hid https://ift.tt/olpXOmF https://ift.tt/bkqUWPsbuaqbot
2022-06-12 20:10:12🚨 #Suricata #Exploit Spring Security Authorization Bypass (CVE-2022-22978) https://t.co/HczacRXiK5 https://t.co/RcDJk3zT7G https://github.com/c3rb3ru5d3d53c/signatures/blob/master/signatures/exploit/cve-2022-22978/cve-2022-22978.suricata-6.0.5.rules https://twitter.com/sirifu4k1/status/1529284518452273154c3rb3ru5d3d53c
2022-06-12 19:50:26🚨 #Suricata #Exploit Spring Security Authorization Bypass (CVE-2022-22978) https://t.co/HczacSeU8F… https://t.co/GU55ZtqIHH https://github.com/c3rb3ru5d3d53c/signatures/blob/master/signatures/exploit/cve-2022-22978/cve-2022-22978.suricata-6.0.5.rules https://twitter.com/i/web/status/1536071532941914112c3rb3ru5d3d53c
2022-06-10 14:50:46🚨 NEW: CVE-2022-22978 🚨 In Spring Security versions 5.5.6 and 5.6.3 and older unsupported versions, RegexRequestMat… https://t.co/bXjz8UbToz https://twitter.com/i/web/status/1535271389577584640threatintelctr
2022-06-04 23:30:57New post from https://t.co/uXvPWJy6tj (CVE-2022-22978 (spring_security)) has been published on https://t.co/a03VWfrUKj http://www.sesin.at https://www.sesin.at/2022/06/05/cve-2022-22978-spring_security/WolfgangSesin
2022-06-04 23:30:50New post from https://t.co/9KYxtdZjkl (CVE-2022-22978 (spring_security)) has been published on https://t.co/ECPJG6QF1h http://www.sesin.at https://www.sesin.at/2022/06/05/cve-2022-22978-spring_security/www_sesin_at
2022-06-02 16:50:54🚨 NEW: CVE-2022-22978 🚨 In Spring Security versions 5.5.6 and 5.6.3 and older unsupported versions, RegexRequestMat… https://t.co/r1vEsjHCun https://twitter.com/i/web/status/1532402478817370115threatintelctr
2022-05-27 03:50:27CVE-2022-22978 Spring Security RegexRequestMatcher Authorization Bypass EXP https://t.co/mEP7llhmAP #Pentesting… https://t.co/kUtG5dgvQC https://github.com/spring-projects/spring-security/commit/70863952aeb9733499027714d38821db05654856 https://twitter.com/i/web/status/1530032464646782995ptracesecurity
2022-05-26 04:40:55CVE-2022-22978 Spring Security RegexRequestMatcher Authorization Bypass Due to Regular expressions "dot" not inclu… https://t.co/jr4V7S0AOa https://twitter.com/i/web/status/1529681499305279488bywalkss
2022-05-26 04:32:10CVE-2022-22978 Spring Security RegexRequestMatcher Authorization Due to Regular expressions "dot" not include \r\n… https://t.co/VR0TmI6aK9 https://twitter.com/i/web/status/1529681010429898753bywalkss
2022-05-26 04:20:39Spring Security RegexRequestMatcher 认证绕过漏洞分析(CVE-2022-22978) https://t.co/om26bX7hOP https://t.co/DFTMo57xbp https://ift.tt/IqKWD9R https://ift.tt/piw9aNvbuaqbot
2022-05-25 18:30:26CVE-2022-22978 https://t.co/Hn8PQTq50M #HarsiaInfo https://har-sia.info/CVE-2022-22978.htmlHar_sia
2022-05-25 15:10:23CVE-2022-22978 https://t.co/Hn8PQTqCQk #HarsiaInfo https://har-sia.info/CVE-2022-22978.htmlHar_sia
2022-05-25 13:14:35Top 3 trending CVEs on Twitter Past 24 hrs: CVE-2022-22978: 527.7K (audience size) CVE-2022-25237: 284.5K CVE-2022… https://t.co/CaLkD6xyaF https://twitter.com/i/web/status/1529447203005161473CVEtrends
2022-05-25 10:30:28CVE-2022-22978 Spring Security RegexRequestMatcher Authorization Bypass EXP: %0d or %oa https://t.co/gUBmtTHq6K… https://t.co/3I1ja1xwOQ https://github.com/spring-projects/spring-security/commit/70863952aeb9733499027714d38821db05654856 https://twitter.com/i/web/status/1529409129894318082PentestingN
2022-05-25 09:41:13there is an authentication bypass in Spring Security <5.6.5, (CVE-2022-22978) with few information on the internets… https://t.co/71TpdqPxja https://twitter.com/i/web/status/1529394855495049217ChristianKuehn
2022-05-25 09:27:15CVE-2022-22978 Spring Security RegexRequestMatcher Authorization Bypass EXP: %0d or %oa https://t.co/8LdeAdjOop… https://t.co/ZVj2DUGrIn https://github.com/spring-projects/spring-security/commit/70863952aeb9733499027714d38821db05654856 https://twitter.com/i/web/status/1529389351561469953hack_git
2022-05-25 09:10:30Forwarded from @Leakinfo ​Обход авторизации Spring Security (CVE-2022-22978) Забавный баг в Spring Security, котор… https://t.co/ewI8IMMFGD https://twitter.com/i/web/status/1529388234492583936gebutcher
2022-05-25 06:00:08Het issue CVE-2022-22978 in het Spring Security framework krijgt verhoogde belangstelling. De PoC is simpel. Het N… https://t.co/F5e8pKqxBW https://twitter.com/i/web/status/1529341185441013760PSafe_NL
2022-05-25 05:41:11So CVE-2022-22978 is a fun bug - reminds me of the IIS unicode vuln. https://t.co/aKIgXWUlMT https://twitter.com/sirifu4k1/status/1529284518452273154GossiTheDog
2022-05-25 04:00:56Spring Security RegexRequestMatcher 认证绕过漏洞分析(CVE-2022-22978)|NOSEC安全讯息平台 - 白帽汇安全研究院 https://t.co/ajRCDXdo8v https://nosec.org/home/detail/5006.htmlautumn_good_35
2022-05-25 02:30:36CVE-2022-22978 Spring Security RegexRequestMatcher Authorization Bypass EXP: %0d or %oa https://t.co/6EV316E15O… https://t.co/KZQPCh7P5z https://github.com/spring-projects/spring-security/commit/70863952aeb9733499027714d38821db05654856 https://twitter.com/i/web/status/1529284518452273154sirifu4k1
2022-05-21 09:10:18Spring Security security bypass | CVE-2022-22978 - https://t.co/tfbZLax8Z9 https://www.redpacketsecurity.com/spring-security-security-bypass-cve-2022-22978/RedPacketSec
2022-05-20 07:15:47CVE-2022-22978 In Spring Security versions 5.5.6 and 5.5.7 and older unsupported versions, RegexRequestMatcher can… https://t.co/4ZlBUcYkzK https://twitter.com/i/web/status/1527547135318712321threatmeter
2022-05-20 05:00:42[Vuln] The severity is increased for this new vulnerability affecting Vmware Spring Security (CVE-2022-22978) https://t.co/js4LyyrKZG https://vuldb.com/?id.200384vuldb
2022-05-19 18:50:10One night, CVE-2022-22978 wished upon a star, and today that wish has been granted. It now has a name, like a real,… https://t.co/psW8RxtTJ7 https://twitter.com/i/web/status/1527360907931619337vulnonym
2022-05-19 18:03:46New post from https://t.co/uXvPWJPHkR (CVE-2022-22978) has been published on https://t.co/JV3gB6mniT http://www.sesin.at https://www.sesin.at/2022/05/19/cve-2022-22978/WolfgangSesin
2022-05-19 18:03:37New post from https://t.co/9KYxtdHHVL (CVE-2022-22978) has been published on https://t.co/VpBKOhr9y2 http://www.sesin.at https://www.sesin.at/2022/05/19/cve-2022-22978/www_sesin_at
2022-05-19 17:10:28Spring - CVE-2022-22978: https://t.co/xTddAYSvUH https://tanzu.vmware.com/security/cve-2022-22978LinInfoSec
2022-05-19 17:10:22CVE-2022-22978 In Spring Security versions 5.5.6 and 5.5.7 and older unsupported versions, RegexRequestMatcher can… https://t.co/9qAEyO8LcQ https://twitter.com/i/web/status/1527333659526586399VulmonFeeds
2022-05-19 16:02:26🚨 NEW: CVE-2022-22978 🚨 In Spring Security versions 5.5.6 and 5.5.7 and older unsupported versions, RegexRequestMat… https://t.co/BVHiBriWZQ https://twitter.com/i/web/status/1527313948650770438threatintelctr
2022-05-19 15:54:07CVE-2022-22978 In Spring Security versions 5.5.6 and 5.5.7 and older unsupported versions, RegexRequestMatcher can… https://t.co/vRzZWjb9ii https://twitter.com/i/web/status/1527314435672449024CVEnew
2022-05-19 15:11:15CVE-2022-22978 : In Spring Security versions 5.5.6 and 5.5.7 and older unsupported versions, RegexRequestMatcher ca… https://t.co/cw2GNV2iIG https://twitter.com/i/web/status/1527305369038430208CVEreport
2022-05-18 00:21:15Spring Security 5.7.0, 5.6.4, 5.5.7 发布修复 CVE-2022-22978 & CVE-2022-22976 https://t.co/5YgUiwWVG6 https://ift.tt/jmKcIUalinuxeden_com
2022-05-17 17:21:13CVE採番ミスってるなとおもったらCVE-2022-22978になってたnishino_hiroki