Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

IBM Security Bulletins
IBM Security Bulletinsadded 2023/03/29 1:48 a.m.30 views

Security Bulletin: Vulnerability in Apache Struts affects IBM SAN Volume Controller and Storwize Family (CVE-2015-5209)

Summary An Open Source Apache Struts vulnerability was disclosed in September 2015. Struts is used by SAN Volume Controller and Storwize Family. Vulnerability Details CVEID: CVE-2015-5209 DESCRIPTION: Apache Struts could allow a remote attacker to gain unauthorized access to the system. An attack...

7.5CVSS7.6AI score0.09063EPSS
Exploits0Affected Software5
SUSE CVE
SUSE CVEadded 2023/02/15 5:16 a.m.3 views

SUSE CVE-2015-5209

Apache Struts 2.x before 2.3.24.1 allows remote attackers to manipulate Struts internals, alter user sessions, or affect container settings via vectors involving a top object...

7.5CVSS9.6AI score0.09063EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/18 12:10 a.m.22 views

Security Bulletin: A vulnerability in Struts affects the IBM FlashSystem model V9000 (CVE-2015-5209)

Summary There is a vulnerability in Apache Struts to which the IBM® FlashSystem™ V9000 is susceptible. An exploit of this vulnerability could allow a remote attacker to gain unauthorized access to the system. Vulnerability Details CVEID: CVE-2015-5209 DESCRIPTION: Apache Struts could allow a remo...

7.5CVSS0.6AI score0.09063EPSS
Exploits0Affected Software1
OpenVAS
OpenVASadded 2017/08/31 12:0 a.m.19 views

Apache Struts 'top' Object Access Security Bypass Vulnerability (S2-026) - Linux

Apache Struts is prone to a security bypass vulnerability. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier...

7.5CVSS7.6AI score0.09063EPSS
Exploits0References3
NVD
NVDadded 2017/08/29 3:29 p.m.19 views

CVE-2015-5209

Apache Struts 2.x before 2.3.24.1 allows remote attackers to manipulate Struts internals, alter user sessions, or affect container settings via vectors involving a top object...

7.5CVSS7.4AI score0.09063EPSS
Exploits0References4
Cvelist
Cvelistadded 2017/08/29 3:0 p.m.19 views

CVE-2015-5209

Apache Struts 2.x before 2.3.24.1 allows remote attackers to manipulate Struts internals, alter user sessions, or affect container settings via vectors involving a top object...

7.4AI score0.09063EPSS
Exploits0References4
CVE
CVEadded 2017/08/29 3:0 p.m.82 views

CVE-2015-5209

CVE-2015-5209 affects Apache Struts 2.x and allows a remote attacker to gain unauthorized access by manipulating a special top-level object in Struts' ValueStack, enabling manipulation of internal settings and user sessions. Public advisories and IBM notices enumerate affected IBM products (IBM S...

7.5CVSS7.3AI score0.09063EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder