CVE-2022-22979

Summary

In Spring Cloud Function versions prior to 3.2.6, it is possible for a user who directly interacts with framework provided lookup functionality to cause a denial-of-service condition due to the caching issue in the Function Catalog component of the framework.

Affected Software

VendorProductVersion RangeStatus
n/aSpring Cloud FunctionSpring Cloud Function (prior to 3.2.6)affected

Weaknesses

  • Denial-of-service vulnerability

ADP Enrichment

CVE Program Container

Additional References

References