CVE-2022-22947 : code injection vulnerability in the Spring Cloud Gateway library

Microsoft says the Sysrv botnet is now exploiting vulnerabilities(CVE-2022-22947 : code injection vulnerability in the Spring Cloud Gateway library that can be abused for remote code execution on unpatched hosts.) in the Spring Framework and WordPress to ensnare and deploy cryptomining malware on vulnerable Windows and Linux servers.

Are any IoCs published??

It’s just a coinminner, Pups of the modern day