Spring4Shell framework vulnerabilities (CVE-2022-22963 and CVE-2022-22965)
1652282400000
Announcement
CVE
We are rolling out improvements to the security posture of all applications within WAF-as-a-Service in order to provide better protection against the Spring4Shell framework vulnerabilities (CVE-2022-22963 and CVE-2022-22965).
If for some reason you encounter false positives, you can disable this protection with the following:
Deleting/Disabling the spring4shell_protection Header ADR
Disabling OS Injection in Parameter Protection
For any additional help, please contact Barracuda Support.
Did you like this update?
{error_message}
Leave your name and email so that we can reply to you (both fields are optional):
Thanks for your feedback!
Published by Scott Treacy