CVE-2022-27772

HIGH

Spring Boot < 2.2.11 - Temporary Directory Hijacking in AbstractConfigurableWebServerFactory

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-27772. PoCs published by puneetbehl.

AI-analyzed exploit summary This repository provides a writeup and example code for CVE-2022-27772, a vulnerability in Grails 3.3 involving a custom TomcatEmbeddedServletContainerFactory implementation. The README describes the issue but does not include functional exploit code.

Description

spring-boot versions prior to version v2.2.11.RELEASE was vulnerable to temporary directory hijacking. This vulnerability impacted the org.springframework.boot.web.server.AbstractConfigurableWebServerFactory.createTempDir method. NOTE: This vulnerability only affects products and/or versions that are no longer supported by the maintainer

Exploits (1)

nomisec WRITEUP
by puneetbehl · poc
https://github.com/puneetbehl/grails3-cve-2022-27772

This repository provides a writeup and example code for CVE-2022-27772, a vulnerability in Grails 3.3 involving a custom TomcatEmbeddedServletContainerFactory implementation. The README describes the issue but does not include functional exploit code.

Classification
Writeup 90%
Attack Type
Other
Complexity
Moderate
Reliability
Theoretical
Target: Grails 3.3
No auth needed
Prerequisites: Access to a vulnerable Grails 3.3 application
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 7.8
EPSS 0.0058
EPSS Percentile 43.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-668
Status published
Products (2)
org.springframework.boot/spring-boot 0 - 2.2.11.RELEASEMaven
vmware/spring_boot < 2.2.11
Published Mar 30, 2022
Tracked Since Feb 18, 2026