来源

关联漏洞

描述

Rust-based exploit for the CVE-2022-22963 vulnerability

介绍

# CVE-2022-22963 Exploit
This repository contains a Rust-based exploit for the CVE-2022-22963 vulnerability found in Spring Cloud Function versions 3.1.6, 3.2.2, and older unsupported versions. The vulnerability allows remote code execution and access to local resources through a specially crafted Spring Expression (SpEL) used as a routing-expression.

## Description
In Spring Cloud Function versions 3.1.6, 3.2.2, and older unsupported versions, when using routing functionality, it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local resources.

This exploit allows you to:
```
1. Test if the Spring Cloud Function is vulnerable
2. Send shellcode for a shell
3. Enter custom commands
```

## Affected Versions
```
Spring Cloud Function 3.1.6
Spring Cloud Function 3.2.2
Older, unsupported versions
```

## Mitigation
Users of affected versions should upgrade to 3.1.7 or 3.2.3. No other steps are necessary. Releases that have fixed this issue include:
```
Spring Cloud Function 3.1.7
Spring Cloud Function 3.2.3
```

## Usage
```
1. Clone this repository.
2. Ensure you have Rust and Cargo installed.
3. Compile the exploit using cargo build --release.
4. Run the compiled binary found in the target/release directory, providing the target IP address when prompted.
5. Select an option from the menu and follow the instructions.
```
## Credit
This vulnerability was initially discovered and responsibly reported by m09u3r.

文件快照

 [4.0K]  /data/pocs/3c868052d72de45acfe0ee5bbc11bea6d0c91ed9
├── [ 325]  Cargo.toml
├── [1.5K]  README.md
└── [4.0K]  src
    └── [7.6K]  main.rs

1 directory, 3 files

备注