Lucene search

CVE-2018-11776

🗓️ 22 Aug 2018 13:00:29Reported by [email protected]Type

Possible Remote Code Execution in Apache Strut

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 101
exploitpack	Apache Struts 2.3 2.3.34 2.5 2.5.16 - Remote Code Execution (1)	26 Aug 201800:00	–	exploitpack
0day.today	Apache Struts 2 Namespace Redirect OGNL Injection Exploit	8 Sep 201800:00	–	zdt
0day.today	Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (2) Exploit	28 Aug 201800:00	–	zdt
0day.today	Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (1) Exploit	28 Aug 201800:00	–	zdt
0day.today	Apache Struts 2.x Remote Code Execution Vulnerability	24 Aug 201800:00	–	zdt
RedhatCVE	CVE-2018-11776	22 Aug 201808:49	–	redhatcve
Vulnrichment	CVE-2018-11776	22 Aug 201813:00	–	vulnrichment
Packet Storm	Apache Struts 2 Namespace Redirect OGNL Injection	7 Sep 201800:00	–	packetstorm
Packet Storm	Apache Struts 2.3 / 2.5 Remote Code Execution	26 Aug 201800:00	–	packetstorm
Packet Storm	Apache Struts 2.3 / 2.5 Remote Code Execution	25 Aug 201800:00	–	packetstorm

Nvd

Node

apache strutsRange2.0.4–2.3.35

apache strutsRange2.5.0–2.5.17

Node

netapp active_iq_unified_managerRange7.3≥windows

netapp active_iq_unified_managerRange9.5≥vmware_vsphere

netapp oncommand_insightMatch-

netapp oncommand_workflow_automationMatch-

netapp snapcenterMatch-

Node

oracle communications_policy_managementRange<12.5.0

oracle enterprise_manager_base_platformMatch13.3.0.0

oracle enterprise_manager_base_platformMatch13.4.0.0

oracle mysql_enterprise_monitorRange≤3.4.9.4237

oracle mysql_enterprise_monitorRange4.0.0–4.0.6.5281

oracle mysql_enterprise_monitorRange8.0.0–8.0.2.8191

Source	Link
securitytracker	www.securitytracker.com/id/1041888
securitytracker	www.securitytracker.com/id/1041547
packetstormsecurity	www.packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html
exploit-db	www.exploit-db.com/exploits/45367/
security	www.security.netapp.com/advisory/ntap-20181018-0002/
oracle	www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
oracle	www.oracle.com/security-alerts/cpujul2020.html
arubanetworks	www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt
lists	www.lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E
securityfocus	www.securityfocus.com/bid/105125

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Aug 2018 13:29Current

8.5High risk

Vulners AI Score8.5

CVSS29.3

CVSS38.1

EPSS0.94429