{"vulnerability": "CVE-2022-22978", "sightings": [{"uuid": "25bc0d82-c9db-431d-88c6-2c83ad6511b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22978", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2324", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aCVE-2022-22978 Spring-Security bypass Demo\nURL\uff1ahttps://github.com/DeEpinGh0st/CVE-2022-22978\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-05-31T03:16:30.000000Z"}, {"uuid": "ecb1b68e-1035-4d71-bedc-cc576b78911e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22978", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2430", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aPoC of CVE-2022-22978 vulnerability in Spring Security framework\nURL\uff1ahttps://github.com/ducluongtran9121/CVE-2022-22978-PoC\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-06-04T16:59:25.000000Z"}, {"uuid": "595e9e9c-90df-418b-8ca7-f6622e352ddc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22978", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2699", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aCVE-2022-22978 Lab Project\nURL\uff1ahttps://github.com/aeifkz/CVE-2022-22978\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-07-13T09:42:19.000000Z"}, {"uuid": "26051fe2-eadd-4454-9f7e-68969ddd4cc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22978", "type": "seen", "source": "https://t.me/arpsyndicate/138", "content": "#ExploitObserverAlert\n\nCVE-2022-22978\n\nDESCRIPTION: Exploit Observer has 34 entries related to CVE-2022-22978. In spring security versions prior to 5.4.11 , 5.5.7  , 5.6.4  and older unsupported versions, RegexRequestMatcher can easily be misconfigured to be bypassed on some servlet containers. Applications using RegexRequestMatcher with `.` in the regular expression are possibly vulnerable to an authorization bypass.\n\nFIRST-EPSS: 0.011580000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2023-11-13T01:33:20.000000Z"}, {"uuid": "dd92d3f7-ea2c-4f5d-8b97-8b1d8aa6d9cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22978", "type": "seen", "source": "https://t.me/cibsecurity/42984", "content": "\u203c CVE-2022-22978 \u203c\n\nIn Spring Security versions 5.5.6 and 5.5.7 and older unsupported versions, RegexRequestMatcher can easily be misconfigured to be bypassed on some servlet containers. Applications using RegexRequestMatcher with `.` in the regular expression are possibly vulnerable to an authorization bypass.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-19T18:29:42.000000Z"}, {"uuid": "c4fe7fd5-1fa1-4fa0-b91a-2c53b9facb5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22978", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7849", "content": "#exploit\n1. CVE 2022-22978:\nAuthorization Bypass in RegexRequestMatcher\nhttps://github.com/umakant76705/CVE-2022-22978\n\n2. Modicon M580/M340 Safety Protection bypass and utils\nhttps://github.com/0xedh/schneider_plc_exploit\n\n3. CVE-2022-38108:\nRCE in SolarWinds Network Performance Monitor\nhttps://www.zerodayinitiative.com/blog/2023/2/27/cve-2022-38108-rce-in-solarwinds-network-performance-monitor\n\n4. PHP SplDoublyLinkedList::pop() UAF\nhttps://therealcoiffeur.com/c101010", "creation_timestamp": "2023-03-02T11:02:01.000000Z"}]}