Lab Walkthrough — Authorization Bypass in RegexRequestMatcher [CVE-2022–22978]
Tags
attack-pattern: Data Exploits - T1587.004 Exploits - T1588.005
Show in Graph
Common Information
Type Value
UUID 45bb86da-4bf3-4fca-a86d-aa5b0d5d7fbe
Fingerprint 9ea194003cb7ee9f
Analysis status DONE
Considered CTI value -2
Text language
Published April 20, 2023, 2:01 p.m.
Added to db April 20, 2023, 4:17 p.m.
Last updated Nov. 18, 2024, 2:38 a.m.
Headline Lab Walkthrough — Authorization Bypass in RegexRequestMatcher [CVE-2022–22978]
Title Lab Walkthrough — Authorization Bypass in RegexRequestMatcher [CVE-2022–22978]
Detected Hints/Tags/Attributes 21/1/20
Source URLs
Redirection Url
Details Redirection https://blog.pentesteracademy.com/lab-walkthrough-authorization-bypass-in-regexrequestmatcher-cve-2022-22978-195bff711f6a?gi=3a38140986ce&source=rss------cybersecurity-5
Details Redirection https://blog.pentesteracademy.com/lab-walkthrough-authorization-bypass-in-regexrequestmatcher-cve-2022-22978-195bff711f6a?gi=3ace41563f39&source=rss------cybersecurity-5
Details Redirection https://blog.pentesteracademy.com/lab-walkthrough-authorization-bypass-in-regexrequestmatcher-cve-2022-22978-195bff711f6a?gi=7338453df20c&source=rss------infosec-5
Details Redirection https://blog.pentesteracademy.com/lab-walkthrough-authorization-bypass-in-regexrequestmatcher-cve-2022-22978-195bff711f6a?gi=a6bdc29cf023&source=rss------infosec-5
Details Redirection https://blog.pentesteracademy.com/lab-walkthrough-authorization-bypass-in-regexrequestmatcher-cve-2022-22978-195bff711f6a?gi=b082d82fe986&source=rss------cybersecurity-5
Details Redirection https://blog.pentesteracademy.com/lab-walkthrough-authorization-bypass-in-regexrequestmatcher-cve-2022-22978-195bff711f6a?gi=ed480768857a&source=rss------infosec-5
Details Redirection https://blog.pentesteracademy.com/lab-walkthrough-authorization-bypass-in-regexrequestmatcher-cve-2022-22978-195bff711f6a?source=rss------cybersecurity-5
Details Redirection https://blog.pentesteracademy.com/lab-walkthrough-authorization-bypass-in-regexrequestmatcher-cve-2022-22978-195bff711f6a?source=rss------infosec-5
Details Source https://medium.com/m/global-identity-2?redirectUrl=https%3A%2F%2Fblog.pentesteracademy.com%2Flab-walkthrough-authorization-bypass-in-regexrequestmatcher-cve-2022-22978-195bff711f6a%3Fsource%3Drss------cybersecurity-5
Details Source https://medium.com/m/global-identity-2?redirectUrl=https%3A%2F%2Fblog.pentesteracademy.com%2Flab-walkthrough-authorization-bypass-in-regexrequestmatcher-cve-2022-22978-195bff711f6a%3Fsource%3Drss------infosec-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
Details pentesteracademy.com blog.pentesteracademy.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 167 Cybersecurity on Medium https://medium.com/feed/tag/cybersecurity 2024-08-30 22:08
Details 168 Infosec on Medium https://medium.com/feed/tag/infosec 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 7 
cve-2022-22978
Details Domain 28 
spring.io
Details Domain 642 
nvd.nist.gov
Details Domain 7 
tanzu.vmware.com
Details Domain 4128 
github.com
Details Domain 10 
org.springframework.security
Details Domain 21 
ine.com
Details Github username 2 
deepingh0st
Details Github username 1 
ducluongtran9121
Details md5 1 
23e0520ade6129343e4c1d9fd63120ea
Details IPv4 1441 
127.0.0.1
Details Url 1 
https://spring.io/projects/spring-security
Details Url 1 
https://nvd.nist.gov/vuln/detail/cve-2022-22978
Details Url 1 
https://tanzu.vmware.com/security/cve-2022-22978
Details Url 20 
http://127.0.0.1:8080
Details Url 1 
https://github.com/deepingh0st/cve-2022-22978
Details Url 1 
http://127.0.0.1:8080/admin/index
Details Url 1 
https://github.com/ducluongtran9121/cve-2022-22978-poc
Details Url 1 
http://127.0.0.1:8080/admin
Details Url 5 
https://ine.com