Please see our blog post for the most up-to-date information regarding the recently discovered Spring Framework RCE vulnerabilities.
New Spring Framework RCE Vulnerability Confirmed - What to do?
To get current details for the vulnerabilities listed in that article you can use the vulnerability lookup in your organization's Sonatype Lifecycle instance:
https://help.sonatype.com/en/vulnerability-lookup.html
Keywords: Springshell, Spring Expression language, SpEL, CVE-2021-22963, SONATYPE-2022-1764, spring-core