Published: 30/03/2022 Updated: 11/04/2024

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

spring-boot versions prior to version v2.2.11.RELEASE was vulnerable to temporary directory hijacking. This vulnerability impacted the org.springframework.boot.web.server.AbstractConfigurableWebServerFactory.createTempDir method. NOTE: This vulnerability only affects products and/or versions that are no longer supported by the maintainer

Vulnerable Product	Search on Vulmon	Subscribe to Product
vmware spring boot

grails3-cve-2022-27772 The Grails® framework 33 application provides custom implementation for TomcatEmbeddedServletContainerFactory which overrides createTempDirectory method implementation The custom implementation is then used to create EmbeddedServletContainer bean from Applicationgroovy class Ref: githubcom/JLLeitschuh/security-research/security/advisories

CWE-668 https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-cm59-pr5q-cw85 https://nvd.nist.gov https://github.com/puneetbehl/grails3-cve-2022-27772

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-27772

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect