CVE-2022-31692

high-risk

Published 2022-10-31

Spring Security, versions 5.7 prior to 5.7.5 and 5.6 prior to 5.6.9 could be susceptible to authorization rules bypass via forward or include dispatcher types. Specifically, an application is vulnerable when all of the following are true: The application expects that Spring Security applies security to forward and include dispatcher types. The application uses the AuthorizationFilter either manually or via the authorizeHttpRequests() method. The application configures the FilterChainProxy to apply to forward and/or include requests (e.g. spring.security.filter.dispatcher-types = request, error, async, forward, include). The application may forward or include the request to a higher privilege-secured endpoint.The application configures Spring Security to apply to every dispatcher type via authorizeHttpRequests().shouldFilterAllDispatcherTypes(true)

Do I need to act?

8.4% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (3)

Spring Security

Active Iq Unified Manager

Affected Vendors

Vmware Netapp

References (4)

Third Party Advisory https://security.netapp.com/advisory/ntap-20221215-0010/

Mitigation https://tanzu.vmware.com/security/cve-2022-31692

Third Party Advisory https://security.netapp.com/advisory/ntap-20221215-0010/

Mitigation https://tanzu.vmware.com/security/cve-2022-31692

/ 100

high-risk

Severity 32/34 · Critical

Exploitability 10/34 · Low

Exposure 9/34 · Low