{"vulnerability": "CVE-2022-22970", "sightings": [{"uuid": "d17fb149-2130-49c6-9202-260a6790f0cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22970", "type": "seen", "source": "https://t.me/arpsyndicate/3193", "content": "#ExploitObserverAlert\n\nCVE-2022-22970\n\nDESCRIPTION: Exploit Observer has 8 entries in 5 file formats related to CVE-2022-22970. In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupported versions, applications that handle file uploads are vulnerable to DoS attack if they rely on data binding to set a MultipartFile or javax.servlet.Part to a field in a model object.\n\nFIRST-EPSS: 0.001570000\nNVD-IS: 3.6\nNVD-ES: 1.6", "creation_timestamp": "2024-01-28T03:57:04.000000Z"}, {"uuid": "0441f27f-3707-4882-aba5-49e9bb2873ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22970", "type": "seen", "source": "https://t.me/cibsecurity/42562", "content": "\u203c CVE-2022-22970 \u203c\n\nIn spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupported versions, applications that handle file uploads are vulnerable to DoS attack if they rely on data binding to set a MultipartFile or javax.servlet.Part to a field in a model object.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T00:42:25.000000Z"}]}