Splunk Response to the Apache Software Foundation Publishing a Vulnerability on Apache Commons Text (CVE-2022-42889) (Text4Shell)

Advisory ID: SVD-2023-0214

CVE ID: CVE-2022-42889

Published: 2023-02-14

Last Update: 2023-02-14

Description

The Apache Security Team disclosed a critical vulnerability, CVE-2022-42889, that affects the Apache Common Text library. For more information, see the Apache Software Foundation’s advisory. Vulnerability CVE-2022-42889 does not affect Splunk products. If Apache Commons Text is present in your environment’s local operating system, review the Apache Software Foundation’s advisory for updating strategies.

Mitigations and Workarounds

None

Detections

Text4Shell CVE-2022-42889

This analytic story targets CVE-2022-42889, known as “Text4Shell”. Text4Shell is a vulnerability in the popular Java library “Apache Commons Text” which can result in arbitrary code execution when the library processes malicious input.

Severity

Informational