Base Score

CRITICAL9.8

CVE-2022-22980

A Spring Data MongoDB application is vulnerable to SpEL Injection when using @Query or @Aggregation-annotated query methods with SpEL expressions that contain query parameter placeholders for value binding if the input is not sanitized.

VectorNETWORK

Published Bysecurity@vmware.com

Published DateJun 23, 2022, 17:15

Affected Versions(2)

org.springframework.data:spring-data-mongodb(Maven)

Introduced3.4.0

Fixed3.4.1

LimitN/A

org.springframework.data:spring-data-mongodb(Maven)

Introduced0

Fixed3.3.5

LimitN/A

Package (Ecosystem)	Introduced	Fixed	Limit
org.springframework.data:spring-data-mongodb(Maven)	3.4.0	3.4.1	N/A
org.springframework.data:spring-data-mongodb(Maven)	0	3.3.5	N/A

Weakness Type (CWE):CWE-917

CVSS Metrics

Base Score

9.8

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Base Severity

CRITICAL

Version

3.1

Attack Vector (AV)

NETWORK

Attack Complexity (AC)

LOW

Privileges Required (PR)

NONE

User Interaction (UI)

NONE

Scope (S)

UNCHANGED

Confidentiality (C)

HIGH

Integrity (I)

HIGH

Availability (A)

HIGH

References

https://tanzu.vmware.com/security/cve-2022-22980

Base Score

CRITICAL9.8

Weakness Type (CWE):CWE-917

CVSS Metrics

Base Score

9.8

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Base Severity

CRITICAL

Version

3.1

Attack Vector (AV)

NETWORK

Attack Complexity (AC)

LOW

Privileges Required (PR)

NONE

User Interaction (UI)

NONE

Scope (S)

UNCHANGED

Confidentiality (C)

HIGH

Integrity (I)

HIGH

Availability (A)

HIGH