CVE-2022-31691

Severity Score

9.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Spring Tools 4 for Eclipse version 4.16.0 and below as well as VSCode extensions such as Spring Boot Tools, Concourse CI Pipeline Editor, Bosh Editor and Cloudfoundry Manifest YML Support version 1.39.0 and below all use Snakeyaml library for YAML editing support. This library allows for some special syntax in the YAML that under certain circumstances allows for potentially harmful remote code execution by the attacker.

Spring Tools 4 para Eclipse versión 4.16.0 y siguientes, así como extensiones VSCode como Spring Boot Tools, Concourse CI Pipeline Editor, Bosh Editor y Cloudfoundry Manifest YML Support versión 1.39.0 y siguientes utilizan la librería Snakeyaml para admitir la edición YAML. Esta librería permite una sintaxis especial en YAML que, en determinadas circunstancias, permite que el atacante ejecute código remoto potencialmente dañino.

*Credits: N/A

CVSS Scores

NISTv3.1 9.8

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-05-25 CVE Reserved
2022-11-04 CVE Published
2022-11-17 First Exploit
2024-08-03 CVE Updated
2024-10-19 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (2)

URL	Tag	Source

URL	Date	SRC
https://github.com/SpindleSec/CVE-2022-31691	2022-11-17

URL	Date	SRC

URL	Date	SRC
https://tanzu.vmware.com/security/cve-2022-31691	2023-08-08

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Vmware Search vendor "Vmware"		Bosh Editor Search vendor "Vmware" for product "Bosh Editor"				>= 1.0.0 < 1.40.0 Search vendor "Vmware" for product "Bosh Editor" and version " >= 1.0.0 < 1.40.0"		-		Affected
Vmware Search vendor "Vmware"		Cloudfoundry Manifest Yml Support Search vendor "Vmware" for product "Cloudfoundry Manifest Yml Support"				>= 1.0.0 < 1.40.0 Search vendor "Vmware" for product "Cloudfoundry Manifest Yml Support" and version " >= 1.0.0 < 1.40.0"		-		Affected
Vmware Search vendor "Vmware"		Concourse Ci Pipeline Editor Search vendor "Vmware" for product "Concourse Ci Pipeline Editor"				>= 1.0.0 < 1.40.0 Search vendor "Vmware" for product "Concourse Ci Pipeline Editor" and version " >= 1.0.0 < 1.40.0"		-		Affected
Vmware Search vendor "Vmware"		Spring Boot Tools Search vendor "Vmware" for product "Spring Boot Tools"				>= 1.0.0 < 1.40.0 Search vendor "Vmware" for product "Spring Boot Tools" and version " >= 1.0.0 < 1.40.0"		-		Affected
Vmware Search vendor "Vmware"		Spring Tools Search vendor "Vmware" for product "Spring Tools"				>= 4.0.0 < 4.16.1 Search vendor "Vmware" for product "Spring Tools" and version " >= 4.0.0 < 4.16.1"		eclipse		Affected