Revision as of 23:16, 11 February 2024 edit Vahurzpu (talk \| contribs) Extended confirmed users 14,231 edits m Resolved Category:Harv and Sfn no-target errors by fixing author order in short-cites ← Previous edit		Revision as of 05:41, 13 February 2024 edit undo Pzrq (talk \| contribs) 61 edits →Spring4Shell vulnerability: Rewrite last bit of Spring4Shell to add iTnews reference using same syntax as the Phishing wiki Next edit →
Line 366: ==Spring4Shell vulnerability== {{See also \| Log4Shell}} A [[remote code execution]] vulnerability affecting certain versions of Spring Framework was published in April 2022 under {{CVE\|2022-22965}}. It was given the name ''Spring4Shell'' in reference to the recent [[Log4Shell]] vulnerability, both having similar proofs-of-concept in which attackers could ~~gain shell access~~ on vulnerable machines., gain shell access<ref>{{Cite web \|url=https://www.kaspersky.com/blog/spring4shell-critical-vulnerability-in-spring-java-framework/44034/ \|title=Spring4Shell: critical vulnerability in Spring - Kaspersky official blog }}</ref> or even full control.<ref>{{cite news \|last1=Chirgwin \|first1=Richard \|title=VMware sprung by Spring4shell vulnerability \|url=https://itnews.com.au/news/vmware-sprung-by-spring4shell-vulnerability-578267\|archive-url=https://web.archive.org/web/20240213052709/https://www.itnews.com.au/news/vmware-sprung-by-spring4shell-vulnerability-578267 \|archive-date=13 February 2024 \|access-date=13 February 2024 \|publisher=itnews.com.au \|date=4 April 2022}}</ref> ==See also==

Spring Framework: Difference between revisions