{"containers": {"cna": {"affected": [{"product": "Spring Data MongoDB", "vendor": "n/a", "versions": [{"status": "affected", "version": "3.4.0, 3.3.0 to 3.3.4 and Older"}]}], "descriptions": [{"lang": "en", "value": "A Spring Data MongoDB application is vulnerable to SpEL Injection when using @Query or @Aggregation-annotated query methods with SpEL expressions that contain query parameter placeholders for value binding if the input is not sanitized."}], "problemTypes": [{"descriptions": [{"description": "Spring Data MongoDB SpEL Expression injection vulnerability through annotated repository query methods", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-06-22T13:56:00", "orgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d", "shortName": "vmware"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://tanzu.vmware.com/security/cve-2022-22980"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security@vmware.com", "ID": "CVE-2022-22980", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Spring Data MongoDB", "version": {"version_data": [{"version_value": "3.4.0, 3.3.0 to 3.3.4 and Older"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A Spring Data MongoDB application is vulnerable to SpEL Injection when using @Query or @Aggregation-annotated query methods with SpEL expressions that contain query parameter placeholders for value binding if the input is not sanitized."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Spring Data MongoDB SpEL Expression injection vulnerability through annotated repository query methods"}]}]}, "references": {"reference_data": [{"name": "https://tanzu.vmware.com/security/cve-2022-22980", "refsource": "MISC", "url": "https://tanzu.vmware.com/security/cve-2022-22980"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T03:28:42.620Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://tanzu.vmware.com/security/cve-2022-22980"}]}]}, "cveMetadata": {"assignerOrgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d", "assignerShortName": "vmware", "cveId": "CVE-2022-22980", "datePublished": "2022-06-22T13:56:00", "dateReserved": "2022-01-10T00:00:00", "dateUpdated": "2024-08-03T03:28:42.620Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:vmware:spring_data_mongodb:*:*:*:*:*:*:*:*", "matchCriteriaId": "B6C288ED-B467-4566-9EE6-EEBB1C6F5B9E", "versionEndIncluding": "3.3.4", "vulnerable": true}, {"criteria": "cpe:2.3:a:vmware:spring_data_mongodb:3.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "907BBD3F-1F57-46E0-A00B-236FBF9314C9", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A Spring Data MongoDB application is vulnerable to SpEL Injection when using @Query or @Aggregation-annotated query methods with SpEL expressions that contain query parameter placeholders for value binding if the input is not sanitized."}, {"lang": "es", "value": "Una aplicaci\u00f3n MongoDB de Spring Data es vulnerable a una inyecci\u00f3n de SpEL cuando son usados m\u00e9todos de consulta @Query o @Aggregation-annotated con expresiones SpEL que contienen marcadores de posici\u00f3n de par\u00e1metros de consulta para la vinculaci\u00f3n de valores si la entrada no est\u00e1 saneada"}], "id": "CVE-2022-22980", "lastModified": "2024-11-21T06:47:44.063", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-06-23T17:15:12.120", "references": [{"source": "security@vmware.com", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://tanzu.vmware.com/security/cve-2022-22980"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://tanzu.vmware.com/security/cve-2022-22980"}], "sourceIdentifier": "security@vmware.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-917"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "MongoDB: SpEL in query methods allow code injection", "id": "2102823", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2102823"}, "csaw": false, "cvss3": {"cvss3_base_score": "9.8", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "status": "draft"}, "cwe": "CWE-917", "details": ["A Spring Data MongoDB application is vulnerable to SpEL Injection when using @Query or @Aggregation-annotated query methods with SpEL expressions that contain query parameter placeholders for value binding if the input is not sanitized.", "A flaw was found in the Spring Data MongoDB. This flaw allows an attacker to perform code injection when an application uses some annotations/query methods with Spring Expression Language (SpEL) expressions."], "name": "CVE-2022-22980", "package_state": [{"cpe": "cpe:/a:redhat:jboss_fuse:7", "fix_state": "Not affected", "package_name": "spring-data-mongodb", "product_name": "Red Hat Fuse 7"}, {"cpe": "cpe:/a:redhat:integration:1", "fix_state": "Will not fix", "package_name": "spring-data-mongodb", "product_name": "Red Hat Integration Camel K"}], "public_date": "2022-06-20T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2022-22980\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-22980"], "threat_severity": "Moderate"}