Forum Discussion

amalix's avatar
amalix
Icon for Nimbostratus rankNimbostratus
Aug 04, 2022

Grails Framework Remote Code Execution Vulnerability - CVE-2022-35912

Hi Everyone,

Did anyone mitigate this vulnerability using ASM ?

Regards

  • There is an ASM signature for this - 200104796 - that signature is not specific to CVE-2022-35912 but rather is a generic mitigation for that class of attack, and existed prior to the disclosure of CVE-2022-35912.

    As long as you have signatures newer than 2022/04/10 then you'll already have the latest version of that signature, and just need to ensure it is enabled in your policies.

     

    Hope that helps!

    Aaron