1. CodeSecure
  2. Cross-Product Information
  3. Compatibility and Support Advisories

CVE-2022-22965 SpringShell Vulnerability

Oliver Nott
Updated

CVE-2022-22965 is a remote code execution (RCE) vulnerability in the Spring Framework, a component that is not used by CodeSonar or CodeSentry. As called out Tomcat is a prerequisite needed and again is not used in CodeSecure products. 

This vulnerability was found on March 29th 2022 as a previously zero-day vulnerability.

Was this article helpful?
0 out of 0 found this helpful

Articles in this section

White Papers
Read our white papers to find useful information about software development in the IoT era, where devices must not only function with impeccable quality and safety but also remain resilient to cyber-attacks.
Product Sheets
Read our datasheets and company briefs to gain quick insights into our solutions, products, and integrations, including their capabilities, benefits, and supported environments.
Shift Left Academy
Shift Left Academy is an educational resource to help implement a security first approach. Shift Left focuses on finding and preventing defects and security vulnerabilities early in the software development process
Video
Watch our product, industry, and thought leadership videos and webinars on your own time!
X