Child pages
  • S2-048

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Who should read this

All Struts 2 developers and users should read this

Impact of vulnerability

Possible RCE when using the Struts 2 Struts 1 plugin

Maximum security rating

High

Recommendation

Please read the Solution section

Affected Software

Struts 2.3.x with Struts 1 plugin and Struts 1 action

Reporter

icez <ic3z at qq dot com> from Tophant Competence Center

CVE Identifier

CVE-2017-9791

...