TL;DR
During a routine pentest of a proprietary implementation, I discovered a
URL-parsing vulnerability in the
Spring Framework that
facilitates host confusion, potentially resulting in open redirect or server
side request forgery (SSRF). The finding has been officially designated as
CVE-2024-22243. Additionally, I created an
intentionally-vulnerable example implementation
to demonstrate how this vulnerability might be exploited, as well as some Semgrep rules to help developers scan their code for potential vulnerabilities.
