CVE-2022-22980

CRITICAL

Spring Data MongoDB - Code Injection

Title source: llm

Description

A Spring Data MongoDB application is vulnerable to SpEL Injection when using @Query or @Aggregation-annotated query methods with SpEL expressions that contain query parameter placeholders for value binding if the input is not sanitized.

Exploits (8)

nomisec WORKING POC 32 stars

by trganda · poc

https://github.com/trganda/CVE-2022-22980

View Code ZIP pw:eip

nomisec WORKING POC 14 stars

by kuron3k0 · poc

https://github.com/kuron3k0/Spring-Data-Mongodb-Example

View Code ZIP pw:eip

nomisec WORKING POC 11 stars

by li8u99 · poc

https://github.com/li8u99/Spring-Data-Mongodb-Demo

View Code ZIP pw:eip

nomisec WORKING POC 10 stars

by jweny · poc

https://github.com/jweny/cve-2022-22980

View Code ZIP pw:eip

nomisec WRITEUP 7 stars

by Vulnmachines · poc

https://github.com/Vulnmachines/Spring_cve-2022-22980

View Code ZIP pw:eip

github WORKING POC 5 stars

by JAckLosingHeart · javapoc

https://github.com/JAckLosingHeart/CVE-PoC-Collection/tree/main/spring-CVE-2022-22980

View Code ZIP pw:eip

nomisec WRITEUP 5 stars

by murataydemir · poc

https://github.com/murataydemir/CVE-2022-22980

View Code ZIP pw:eip

nomisec WORKING POC 1 stars

by Eliasdekiniweek · poc

https://github.com/Eliasdekiniweek/CVE-2022-22980

View Code ZIP pw:eip

References (1)

[Mitigation, Vendor Advisory] https://tanzu.vmware.com/security/cve-2022-22980

Scores

CVSS v3 9.8

EPSS 0.8337

EPSS Percentile 99.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-917

Status published

Products (3)

org.springframework.data/spring-data-mongodb 3.4.0 - 3.4.1Maven

vmware/spring_data_mongodb 3.4.0

vmware/spring_data_mongodb < 3.3.4

Published Jun 23, 2022

Tracked Since Feb 18, 2026