Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Grails Framework Remote Code Execution Vulnerability - CVE-2022-35912

amalix
Nimbostratus
Nimbostratus

‎04-Aug-2022 01:38

Hi Everyone,

Did anyone mitigate this vulnerability using ASM ?

Regards

Labels:
0 Kudos
1 REPLY 1

AaronJB
F5 SIRT
F5 SIRT

‎25-Aug-2022 01:14

There is an ASM signature for this - 200104796 - that signature is not specific to CVE-2022-35912 but rather is a generic mitigation for that class of attack, and existed prior to the disclosure of CVE-2022-35912.

As long as you have signatures newer than 2022/04/10 then you'll already have the latest version of that signature, and just need to ensure it is enabled in your policies.

 

Hope that helps!

Aaron

Copyright © 2023 Khoros, LLC