Spring4Shell remediation guide
Two new (and unrelated) vulnerabilities (CVE-2022-22965) and (CVE-2022-22963) have been published at the same time, creating confusion and headaches for all involved trying to remediate them. It is important to understand that these two vulnerabilities are not related. They affect different libraries and require different vectors of attack. What exactly are these vulnerabilities? CVE-2022-22965 - identifies the ability …