diff --git a/dd-smoke-tests/iast-util/src/testFixtures/groovy/datadog/smoketest/AbstractIastSpringBootTest.groovy b/dd-smoke-tests/iast-util/src/testFixtures/groovy/datadog/smoketest/AbstractIastSpringBootTest.groovy
index 21beb16c576..6dee00b4b19 100644
--- a/dd-smoke-tests/iast-util/src/testFixtures/groovy/datadog/smoketest/AbstractIastSpringBootTest.groovy
+++ b/dd-smoke-tests/iast-util/src/testFixtures/groovy/datadog/smoketest/AbstractIastSpringBootTest.groovy
@@ -943,6 +943,18 @@ abstract class AbstractIastSpringBootTest extends AbstractIastServerSmokeTest {
       && vul.location.method == 'reflectionInjectionField'}
   }
 
+  void "Check session rewriting"() {
+    setup:
+    String url = "http://localhost:${httpPort}/greeting;jsessionid=1234"
+    def request = new Request.Builder().url(url).get().build()
+
+    when:
+    client.newCall(request).execute()
+
+    then:
+    hasVulnerability { vul -> vul.type == 'SESSION_REWRITING'}
+  }
+
 
 
 }