cancel
Showing results for 
Search instead for 
Did you mean: 

SpringFramework 0-day

Dave_Pisarek
Cirrus
Cirrus

Do we know if ASM is able to protect against this SpringFramework 0-day cve?

 

https://thehackernews.com/2022/03/unpatched-java-spring-framework-0-day.html

 

 

3 REPLIES 3

F5LUX
Nimbostratus
Nimbostratus

buulam
Community Manager
Community Manager

WAF signatures have now been released: https://support.f5.com/csp/article/K24912123

~~~~~~~~~~~~~~~~~~
@buulam / YouTube.com/DevCentral

Ismael_Goncalves
F5 Employee
F5 Employee

I put together a Python script that enforces (remove from staging) the signatures ID explicited listed in the article K24912123. I hope it helps:
https://github.com/irgoncalves/f5-waf-enforce-sig-Spring4Shell