← back
CVE-2010-1622

CVE-2010-1622

35Vexday Risk Score

No sign of exploitation. It has a public proof of concept.

ssvc Attendepss 52%
from disclosure to weapon0 days
Published on NVDJun 21
1st PoCJun 18
exploitation probability
52%top 1% of all CVEs
observed exploitation
nono source reports it
6 public exploit(s)
SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before 2.5.7.SR01, and 3.0.x before 3.0.3 allows remote attackers to execute arbitrary code via an HTTP request containing class.classLoader.URLs[0]=jar: followed by a URL of a crafted .jar file.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.