CVE-2022-22947: VMware Spring Cloud Gateway Code Injection Vulnerability

This content originally appeared on DEV Community and was authored by Freedom Coder

CVE ID

CVE-2022-22947

Vulnerability Name

VMware Spring Cloud Gateway Code Injection Vulnerability

• Project: VMware
• Product: Spring Cloud Gateway

Date

• Date Added: 2022-05-16
• Due Date: 2022-06-06

Description

Spring Cloud Gateway applications are vulnerable to a code injection attack when the Gateway Actuator endpoint is enabled, exposed and unsecured.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2022-22947

Related Security News

• Experts Reports Sharp Increase in Automated Botnet Attacks Targeting PHP Servers and IoT Devices

More CVEs Info

Common Vulnerabilities & Exposures (CVE) List

This content originally appeared on DEV Community and was authored by Freedom Coder

Print Share Comment Cite Upload Translate Updates

APA

Freedom Coder | Sciencx (2025-10-29T16:33:27+00:00) CVE-2022-22947: VMware Spring Cloud Gateway Code Injection Vulnerability. Retrieved from https://www.scien.cx/2025/10/29/cve-2022-22947-vmware-spring-cloud-gateway-code-injection-vulnerability/

MLA

" » CVE-2022-22947: VMware Spring Cloud Gateway Code Injection Vulnerability." Freedom Coder | Sciencx - Wednesday October 29, 2025, https://www.scien.cx/2025/10/29/cve-2022-22947-vmware-spring-cloud-gateway-code-injection-vulnerability/

HARVARD

Freedom Coder | Sciencx Wednesday October 29, 2025 » CVE-2022-22947: VMware Spring Cloud Gateway Code Injection Vulnerability., viewed ,<https://www.scien.cx/2025/10/29/cve-2022-22947-vmware-spring-cloud-gateway-code-injection-vulnerability/>

VANCOUVER

Freedom Coder | Sciencx - » CVE-2022-22947: VMware Spring Cloud Gateway Code Injection Vulnerability. [Internet]. [Accessed ]. Available from: https://www.scien.cx/2025/10/29/cve-2022-22947-vmware-spring-cloud-gateway-code-injection-vulnerability/

CHICAGO

" » CVE-2022-22947: VMware Spring Cloud Gateway Code Injection Vulnerability." Freedom Coder | Sciencx - Accessed . https://www.scien.cx/2025/10/29/cve-2022-22947-vmware-spring-cloud-gateway-code-injection-vulnerability/

IEEE

" » CVE-2022-22947: VMware Spring Cloud Gateway Code Injection Vulnerability." Freedom Coder | Sciencx [Online]. Available: https://www.scien.cx/2025/10/29/cve-2022-22947-vmware-spring-cloud-gateway-code-injection-vulnerability/. [Accessed: ]

rf:citation

» CVE-2022-22947: VMware Spring Cloud Gateway Code Injection Vulnerability | Freedom Coder | Sciencx | https://www.scien.cx/2025/10/29/cve-2022-22947-vmware-spring-cloud-gateway-code-injection-vulnerability/ |

Please log in to upload a file.

There are no updates yet.
Click the Upload button above to add an update.

You must be logged in to translate posts. Please log in or register.