Technical Forum
Ask questions. Discover Answers.
cancel
Showing results for 
Search instead for 
Did you mean: 

Grails Framework Remote Code Execution Vulnerability - CVE-2022-35912

amalix
Nimbostratus
Nimbostratus

Hi Everyone,

Did anyone mitigate this vulnerability using ASM ?

Regards

1 REPLY 1

AaronJB
F5 SIRT
F5 SIRT

There is an ASM signature for this - 200104796 - that signature is not specific to CVE-2022-35912 but rather is a generic mitigation for that class of attack, and existed prior to the disclosure of CVE-2022-35912.

As long as you have signatures newer than 2022/04/10 then you'll already have the latest version of that signature, and just need to ensure it is enabled in your policies.

 

Hope that helps!

Aaron