CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated)
Tags
Common Information
| Type | Value |
|---|---|
| UUID | d2ca0508-6993-4c29-b949-836f2e1b9313 |
| Fingerprint | 2fa919d1a137be8f |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | March 31, 2022, 11:30 p.m. |
| Added to db | Sept. 26, 2022, 9:34 a.m. |
| Last updated | Dec. 25, 2024, 5:26 a.m. |
| Headline | CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) |
| Title | CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) |
| Detected Hints/Tags/Attributes | 65/1/138 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://unit42.paloaltonetworks.com/cve-2022-22965-springshell/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 99 | cve-2022-22965 |
|
| Details | CVE | 54 | cve-2022-22963 |
|
| Details | CVE | 14 | cve-2010-1622 |
|
| Details | Domain | 1 | test6.ggdd.co.uk |
|
| Details | Domain | 16 | burpcollaborator.net |
|
| Details | File | 1 | shell7.jsp |
|
| Details | File | 1 | 0xd0m7.jsp |
|
| Details | File | 2 | myshell.jsp |
|
| Details | File | 20 | shell.jsp |
|
| Details | File | 11 | tomcatwar.jsp |
|
| Details | File | 3 | wpz.jsp |
|
| Details | File | 1 | tomcarwar.jsp |
|
| Details | File | 2 | checkexploit.jsp |
|
| Details | File | 1 | javatestfila.jsp |
|
| Details | File | 1 | shell_jsp.java |
|
| Details | File | 1 | shell_.jsp |
|
| Details | File | 1 | 0808a56a90ca2f8b1e91a1e60b7b451e.txt |
|
| Details | File | 1 | 0c901fefcae46ba984225aa72df0825c.txt |
|
| Details | File | 1 | 1532b681733b6bce2ff7252d8890d550.txt |
|
| Details | File | 1 | 28fcea06661f13ebe9c87327f949f3a8.txt |
|
| Details | File | 1 | 2b98432e352ff74569b81099dd5ee246.txt |
|
| Details | File | 1 | 4acbedbe977480d19b7b682d4878cae2.txt |
|
| Details | File | 1 | 4fdd6fbd220e26b63a7c9a5aa88f5f31.txt |
|
| Details | File | 1 | 5657e4634210a3d47a789d1389a89320.txt |
|
| Details | File | 1 | 646bbc2c112070c26b3c042e81c6947e.txt |
|
| Details | File | 1 | 70b98d30e383df910ce3d693603404fb.txt |
|
| Details | File | 1 | 73be7d1ef52c3dbc9a5d726288d8a4ba.txt |
|
| Details | File | 1 | 83d81ef47f0e9a205fb66a100f3179bf.txt |
|
| Details | File | 1 | 8592f3e430720d324d7cfd7ecd1de521.txt |
|
| Details | File | 1 | 8697f146477832389449cf2548032ca7.txt |
|
| Details | File | 1 | ujaez.jsp |
|
| Details | File | 1 | y4kws.jsp |
|
| Details | File | 1 | a6bfc76094f689dab978f059ea2456a1.txt |
|
| Details | File | 1 | aniwvzgvwqnwtehgsfsgbslwoiqkjk.jsp |
|
| Details | File | 1 | baf24e5f9fc18cf58172d1ba745f0f7a.txt |
|
| Details | File | 1 | c41fc8f359d1658559c2d1c0043c76fb.txt |
|
| Details | File | 1 | cbsewlaeqsdsqktavziakyzsuwfciu.jsp |
|
| Details | File | 1 | czbwzitpzjzkcvkrirybzihsibmuej.jsp |
|
| Details | File | 1 | czpdnhpraxgzrtatiuigsalfedwwit.jsp |
|
| Details | File | 1 | dnuurzjtlbjrnuukwdmaltqrqqlaig.jsp |
|
| Details | File | 1 | duvdqpoyrcapqbfcetgwsqxfkslubw.jsp |
|
| Details | File | 1 | ee947d98b91c8ada08f8c15e8f3248fc.txt |
|
| Details | File | 1 | efdde87c66fe4e6dc73a2ab6111ca58a.txt |
|
| Details | File | 1 | facb4be5385617bf11e6d67f0aa0203b.txt |
|
| Details | File | 1 | ggoibjvztvlpelaghjzeweqmopjosz.jsp |
|
| Details | File | 1 | goocmasqxwfufyxrgyachwidxdotkh.jsp |
|
| Details | File | 1 | hlbpgpqsyracfnvkgrgvlhcptpmdfn.jsp |
|
| Details | File | 1 | hmmyitbecwhmrdicykmfvqlcsknbff.jsp |
|
| Details | File | 1 | hnmqeuzumlokxuhqyekeetrgougeof.jsp |
|
| Details | File | 1 | ilvckpgzbrcdljyqdfhqendqcwhgxp.jsp |
|
| Details | File | 1 | izodfyvqujwztweclykgozahdlqvqp.jsp |
|
| Details | File | 1 | jynrrkjghebemkrhvfzllrepzosinb.jsp |
|
| Details | File | 1 | kqbnngrfnsxlreajyknuimoamysvwt.jsp |
|
| Details | File | 1 | ltcovlwqkckjpuzbqzbjdpkgkakvno.jsp |
|
| Details | File | 1 | mhoqqvpuxdqtuqzmwdrvdeayqvlygb.jsp |
|
| Details | File | 1 | osanxuadyvjaiorcjfqnckfpewunnt.jsp |
|
| Details | File | 1 | ptipfhjosfvrfwndwqccapozcbasge.jsp |
|
| Details | File | 1 | pxwcqxzrstepmbwufjxuaydkwgmvds.jsp |
|
| Details | File | 1 | qnzfvqpeiljtoyvrywrkuvkrmuewzn.jsp |
|
| Details | File | 1 | rqfla.jsp |
|
| Details | File | 1 | rmdwahilztwhhqnmcbodkgtbnmrhjx.jsp |
|
| Details | File | 1 | tomcat74935.jsp |
|
| Details | File | 1 | ubekdurthzexowlohzgienbwvexynd.jsp |
|
| Details | File | 1 | ufoubgkazumxhqvwlnyfejnmyqofcm.jsp |
|
| Details | File | 1 | ujpmauuhltvsokjracgwkbflkhhnwo.jsp |
|
| Details | File | 1 | vkmckfvljtpbyowxwhgbjsvyktfdiq.jsp |
|
| Details | File | 1 | xcoihpiouaamtnbqqvcvffyxyrokvn.jsp |
|
| Details | File | 1 | yjjhhdlxepozhirznemjabnsciycvv.jsp |
|
| Details | File | 1 | yutugdqbrossntwaujgxwgrpgczkbd.jsp |
|
| Details | File | 1 | zawpiupzzsjexllfbicrgvlcuxzqyb.jsp |
|
| Details | File | 1 | zqgwtzyrexctiyvsawmwttncwzoyyd.jsp |
|
| Details | File | 1 | zuvuegtemzfsyqjfykowggxpqkuqdp.jsp |
|
| Details | File | 1 | gdgct.jsp |
|
| Details | File | 1 | rakesh.jsp |
|
| Details | File | 1 | shei1.jsp |
|
| Details | File | 1 | shell13.jsp |
|
| Details | File | 1 | tomcatlogin.jsp |
|
| Details | File | 1 | data_theorem_spring4shell_scan.txt |
|
| Details | File | 1 | jarom_h1.jsp |
|
| Details | File | 1 | jquery123123123cssbackup7331.jsp |
|
| Details | File | 1 | tomjj.jsp |
|
| Details | File | 1 | test1.jsp |
|
| Details | File | 1 | hackerone0x.jsp |
|
| Details | File | 2 | inject.jsp |
|
| Details | File | 1 | poc4bugb.jsp |
|
| Details | File | 1 | curiositysec.jsp |
|
| Details | File | 1 | mynameis0bsecure.jsp |
|
| Details | File | 1 | tomcatwa.jsp |
|
| Details | File | 1 | ahmed.txt |
|
| Details | File | 1 | testqqsg.jsp |
|
| Details | File | 1 | lelel.jsp |
|
| Details | File | 1 | 07935fdf05b66.jsp |
|
| Details | File | 1 | vulntest-12345.txt |
|
| Details | File | 1 | jquerycssv2.js |
|
| Details | File | 2 | poc.jsp |
|
| Details | File | 1 | tomcatspring.jsp |
|
| Details | File | 2 | ofc.jsp |
|
| Details | File | 2 | lalalalal.jsp |
|
| Details | File | 1 | safetytest.txt |
|
| Details | File | 96 | log.txt |
|
| Details | md5 | 1 | 0808a56a90ca2f8b1e91a1e60b7b451e |
|
| Details | md5 | 1 | 0c901fefcae46ba984225aa72df0825c |
|
| Details | md5 | 1 | 1532b681733b6bce2ff7252d8890d550 |
|
| Details | md5 | 1 | 28fcea06661f13ebe9c87327f949f3a8 |
|
| Details | md5 | 1 | 2b98432e352ff74569b81099dd5ee246 |
|
| Details | md5 | 1 | 4acbedbe977480d19b7b682d4878cae2 |
|
| Details | md5 | 1 | 4fdd6fbd220e26b63a7c9a5aa88f5f31 |
|
| Details | md5 | 1 | 5657e4634210a3d47a789d1389a89320 |
|
| Details | md5 | 1 | 646bbc2c112070c26b3c042e81c6947e |
|
| Details | md5 | 1 | 70b98d30e383df910ce3d693603404fb |
|
| Details | md5 | 1 | 73be7d1ef52c3dbc9a5d726288d8a4ba |
|
| Details | md5 | 1 | 83d81ef47f0e9a205fb66a100f3179bf |
|
| Details | md5 | 1 | 8592f3e430720d324d7cfd7ecd1de521 |
|
| Details | md5 | 1 | 8697f146477832389449cf2548032ca7 |
|
| Details | md5 | 1 | a6bfc76094f689dab978f059ea2456a1 |
|
| Details | md5 | 1 | baf24e5f9fc18cf58172d1ba745f0f7a |
|
| Details | md5 | 1 | c41fc8f359d1658559c2d1c0043c76fb |
|
| Details | md5 | 1 | ee947d98b91c8ada08f8c15e8f3248fc |
|
| Details | md5 | 1 | efdde87c66fe4e6dc73a2ab6111ca58a |
|
| Details | md5 | 1 | facb4be5385617bf11e6d67f0aa0203b |
|
| Details | IPv4 | 95 | 172.16.0.0 |
|
| Details | IPv4 | 154 | 10.0.0.0 |
|
| Details | IPv4 | 1 | 178.79.148.229 |
|
| Details | IPv4 | 1 | 82.165.137.177 |
|
| Details | IPv4 | 3 | 172.104.159.48 |
|
| Details | IPv4 | 1 | 109.74.204.123 |
|
| Details | IPv4 | 1 | 5.253.204.37 |
|
| Details | IPv4 | 1 | 185.245.85.232 |
|
| Details | IPv4 | 1 | 185.196.3.23 |
|
| Details | IPv4 | 3 | 172.104.140.107 |
|
| Details | IPv4 | 1 | 207.246.101.107 |
|
| Details | IPv4 | 3 | 45.33.101.246 |
|
| Details | IPv4 | 1 | 45.33.65.249 |
|
| Details | IPv4 | 1 | 195.246.120.148 |
|
| Details | IPv4 | 1 | 176.125.229.145 |
|
| Details | IPv4 | 4 | 107.174.133.167 |
|
| Details | IPv4 | 3 | 194.31.98.186 |
|
| Details | Url | 4 | http://107.174.133.167/t.sh |