diff --git a/rules/S5334/java/how-to-fix-it/jsp.adoc b/rules/S5334/java/how-to-fix-it/jsp.adoc
new file mode 100644
index 00000000000..3e59f5ac8f8
--- /dev/null
+++ b/rules/S5334/java/how-to-fix-it/jsp.adoc
@@ -0,0 +1,53 @@
+== How to fix it in JSP
+
+=== Code examples
+
+The following code is vulnerable to arbitrary code execution because it compiles
+and runs HTTP data.
+
+==== Noncompliant code example
+
+[source,java,diff-id=21,diff-type=noncompliant]
+----
+<%@ taglib prefix="spring" uri="http://www.springframework.org/tags" %>
+<spring:eval expression="${tainted}" var="result"/>
+----
+
+==== Compliant solution
+
+It is not possible to securely include user input in a SpEL expression inside of
+the template. Evaluate the expression in the controller and pass the result to
+the template instead.
+
+[source,java,diff-id=21,diff-type=compliant]
+----
+import org.springframework.expression.Expression;
+import org.springframework.expression.ExpressionParser;
+import org.springframework.expression.spel.standard.SpelExpressionParser;
+import org.springframework.ui.Model;
+
+@Controller
+public class ExampleController
+{
+    @GetMapping(value = "/")
+    public void exec(@RequestParam("message") String message, Model model) {
+        StandardEvaluationContext evaluationContext = new StandardEvaluationContext();
+        evaluationContext.setVariable("msg", message);
+
+        ExpressionParser parser = new SpelExpressionParser();
+        Expression exp = parser.parseExpression("#msg");
+        String result = (String) exp.getValue(evaluationContext);
+        model.addAttribute("result", result);
+    }
+}
+----
+
+=== How does this work?
+
+include::../../common/fix/introduction.adoc[]
+
+include::../../common/fix/parameters.adoc[]
+
+The compliant code example uses such an approach.
+
+include::../../common/fix/allowlist.adoc[]
diff --git a/rules/S5334/java/metadata.json b/rules/S5334/java/metadata.json
index 4e6322505ac..5ba7b8e142d 100644
--- a/rules/S5334/java/metadata.json
+++ b/rules/S5334/java/metadata.json
@@ -22,6 +22,9 @@
           "5.1.4",
           "5.2.4",
           "5.5.4"
+        ],
+        "STIG ASD 2023-06-08": [
+          "V-222609"
         ]
       }
 }
diff --git a/rules/S5334/java/rule.adoc b/rules/S5334/java/rule.adoc
index c3e4fafa1fe..e7c980d651d 100644
--- a/rules/S5334/java/rule.adoc
+++ b/rules/S5334/java/rule.adoc
@@ -8,6 +8,8 @@ include::../impact.adoc[]
 
 include::how-to-fix-it/commons-compiler.adoc[]
 
+include::how-to-fix-it/jsp.adoc[]
+
 include::how-to-fix-it/spring.adoc[]
 
 == Resources