Applications using both `spring-cloud-netflix-hystrix-dashboard` and `spring-boot-starter-thymeleaf` expose a way to execute code submitted within the request URI path during the resolution of view templates. When a request is made at `/hystrix/monitor;[user-provided data]`, the path elements following `hystrix/monitor` are being evaluated as SpringEL expressions, which can lead to code execution.
References
Link | Resource |
---|---|
https://tanzu.vmware.com/security/cve-2021-22053 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: vmware
Published: 2021-11-19T15:56:11
Updated: 2021-11-19T15:56:11
Reserved: 2021-01-04T00:00:00
Link: CVE-2021-22053
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-11-19T16:15:07.657
Modified: 2021-11-23T18:06:12.030
Link: CVE-2021-22053
JSON object: View
Redhat Information
No data.
CWE