CVE-2022-23463 – com.nepxion:discovery

Package

Manager: maven
Name: com.nepxion:discovery
Vulnerable Version: >=0 <=6.16.2

Severity

Level: Critical

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N

EPSS: 0.03169 pctl0.86418

Details

Nepxion Discovery vulnerable to SpEL Injection leading to Remote Code Execution Nepxion Discovery is a solution for Spring Cloud. Discovery is vulnerable to SpEL Injection in discovery-commons. DiscoveryExpressionResolver’s eval method is evaluating expression with a StandardEvaluationContext, allowing the expression to reach and interact with Java classes such as java.lang.Runtime, leading to Remote Code Execution. There is no patch available for this issue at time of publication. There are no known workarounds.

Metadata

Created: 2022-09-25T00:00:15Z
Modified: 2022-09-28T03:30:11Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/09/GHSA-q979-9m39-23mq/GHSA-q979-9m39-23mq.json
CWE IDs: ["CWE-917"]
Alternative ID: GHSA-q979-9m39-23mq
Finding: F004
Auto approve: 1