Skip to main content

Apache Struts Remote Code Execution Vulnerability

Release Date: 14 Apr 2022 10337 Views

RISK: Medium Risk

TYPE: Servers - Web Servers

TYPE: Web Servers

A vulnerability has been identified in Apache Struts. A remote user can exploit this vulnerability to trigger remote code execution on the targeted system.


Impact

  • Remote Code Execution

System / Technologies affected

  • Struts 2.0.0 - Struts 2.5.29

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • The vendor has issued a fix (upgrade to Struts 2.5.30 or greater)

Vulnerability Identifier


Source


Related Link