Spring4Shell (CVE-2022-22965) is a critical Remote Code Execution (RCE) vulnerability affecting Spring, a common application framework library used by Java developers. You will exploit and mitigate this vulnerability in a virtual lab, giving you the skills you need to "Spring" into action and protect your organization!
Learning Objectives
This course specifically covers a critical vulnerability that could affect your organization. By the end of this course, you will be able to:
- Define the Spring4Shell vulnerability, describe its root cause, and communicate its significance to key organizational stakeholders
- Approach different ways for exploiting and mitigating this vulnerability in a hands-on lab
Framework Connections
Specialty Areas
- Cyber Operations
- Exploitation Analysis
Feedback
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.