8.1

CVSS Score

3.1

-

CVSS Score

Basic Information

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2024-22243

CVE-2024-22243: Spring Web vulnerable to Open Redirect or Server Side Request Forgery

Applications that use UriComponentsBuilder to parse an externally provided URL (e.g. through a query parameter) AND perform validation checks on the host of the parsed URL may be vulnerable to a open redirect attack or to a SSRF attack if the URL is used after passing validation checks.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2024-22243

CVE-2024-22243:

8.1

CVSS Score

3.1

-

CVSS Score

Basic Information

Technical Details

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.springframework:spring-web	maven	>= 6.1.0, < 6.1.4	6.1.4
org.springframework:spring-web	maven	>= 6.0.0, < 6.0.17	6.0.17
org.springframework:spring-web	maven	>= 5.3.0, < 5.3.32	5.3.32
org.springframework:spring-web	maven	<= 5.2.25.RELEASE

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability lies in the parsing of URLs within UriComponentsBuilder, specifically related to the USERINFO_PATTERN. The provided patch updates this regex. Therefore, public methods of UriComponentsBuilder that accept string URLs (like fromUriString, fromHttpUrl) and trigger the parsing logic are the primary vulnerable functions. The build() method, which finalizes the URI, and any internal parsing methods (like a hypothetical parseUriString) that use the pattern are also relevant as they are part of the vulnerable code execution path. The change in the regex from ([^@\\[/?#]*) to ([^@/?#]*) indicates that the previous pattern allowed characters that could be exploited to bypass host validation by manipulating the userinfo part of the URL.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

8.1

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2024-22243: Spring Web vulnerable to Open Redirect or Server Side Request Forgery

CVE-2024-22243:

8.1

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Technical Details

Basic Information

Basic Information

8.1

8.1

CVE-2024-22243: Spring Web vulnerable to Open Redirect or Server Side Request Forgery

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI