DX NetOps Performance Management Portal web server vulnerabilities related to the Spring Framework vulnerabilities
DX NetOps Performance Management Data Aggregator vulnerabilities related to the Spring Framework vulnerabilities
DX NetOps Performance Management Data Collector vulnerabilities related to the Spring Framework vulnerabilities
Vulnerability Information is found by security scans in the following files.
CVE-2022-22970 CVE-2022-22971
Vendor Reference: Spring Framework Advisory 70, Spring Framework Advisory 71
THREAT: The vulnerability exists in the Spring Framework, it is possible for a user to provide a specially crafted SpEL expression that may cause a denial of service condition.
Vulnerable Versions: Spring framework versions 5.3.0 to 5.3.19, 5.2.0 to 5.2.21, and older are vulnerable.
QID Detection: (Authenticated) - LinuxDetection logic executes locate -b -e -r '^spring\-core.*\.jar$' command, ls -l /proc/*/fd | grep -Eo '\S+\/spring\S+jar' | uniq 2> /dev/null and checks if the spring-core-*.jar present on the system.
QID Detection: (Authenticated) - Windows On Windows system, the QID identifies the vulnerable instances of Spring via WMI to check spring-core is included in the running processes via command-line
All supported DX NetOps Performance Management Portal web server releases 21.2.11 and earlier
All supported DX NetOps Performance Management Data Aggregator and Data Collector releases 22.2.2 and earlier
These are remediated by upgrading to 22.2.3 or newer releases of DX NetOps Performance Management.
Upgrade to 22.2.3 or newer to remediate these vulnerabilities.
CVE-2022-22970: In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupported versions, application with a STOMP over WebSocket endpoint is vulnerable to a denial of service attack by an authenticated user.
CVE-2022-22971" In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupported versions, applications that handle file uploads are vulnerable to DoS attack if they rely on data binding to set a MultipartFile or javax.servlet.Part to a field in a model object.