Lucene search
China National Vulnerability DatabaseCNVD-2023-55432HistoryJun 16, 2023 - 12:00 a.m.
Apache Struts Denial of Service Vulnerability (CNVD-2023-55432)
2023-06-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
apache struts
denial of service
vulnerability
open source
mvc framework
java web applications
uncontrolled resource consumption
0.015 Low
EPSS
Percentile
86.9%
Apache Struts is the United States Apache (Apache) Foundation, an open source project , is a set of open source MVC framework for creating enterprise-class Java Web applications , mainly provides two versions of the framework products , Struts 1 and Struts 2. Apache Struts there is a denial of service vulnerability , the vulnerability stems from the application there is uncontrolled resource consumption , an attacker can exploit this vulnerability to cause a denial of service .
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache struts | lt | 2.5.31 | |
| apache struts >=6.0.0,<6. | eq | 1.2.1 |
Related
osv
osv
Apache Struts vulnerable to memory exhaustion
2023-06-14 09:30:42
CVE-2023-34149
2023-06-14 08:15:09
ibm
ibm
veracode
veracode
Denial Of Service (DoS)
2023-06-15 16:44:06
f5
f5
K000135156 : Apache Struts vulnerability CVE-2023-34149
2023-06-22 00:00:00
openvas
openvas
Apache Struts Security Update (S2-063)
2023-06-14 00:00:00
nessus
nessus
Apache Struts 2.0.0 < 6.1.2.1 Denial of Service (S2-063)
2023-06-13 00:00:00
github
github
Apache Struts vulnerable to memory exhaustion
2023-06-14 09:30:42
ubuntucve
ubuntucve
CVE-2023-34149
2023-06-14 00:00:00
cve
cve
CVE-2023-34149
2023-06-14 08:15:09
cvelist
cvelist
nvd
nvd
CVE-2023-34149
2023-06-14 08:15:09
prion
prion
Code injection
2023-06-14 08:15:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00