Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/03 12:0 a.m.55 views

F5 Networks BIG-IP : Apache Struts vulnerabilities (K35226442)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the K35226442 advisory. - An access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when performing...

9.8CVSS8.3AI score0.97399EPSS
Exploits15References3
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/11 1:6 a.m.46 views

Security Bulletin: IBM Sterling Order Management Apache Struts vulnerablity

Summary IBM Sterling Order Management Apache Struts vulnerablity Vulnerability Details CVEID: CVE-2019-0233 DESCRIPTION: Apache Struts is vulnerable to a denial of service, caused by an access permission override when performing a file upload. By sending a specially crafted request, an attacker...

9.8CVSS0.9AI score0.97399EPSS
Exploits15Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/13 1:33 p.m.57 views

Security Bulletin: Vulnerabilities in Apache Struts affect IBM Tivoli Application Dependency Discovery Manager.

Summary Vulnerabilities in Apache Struts affect IBM Tivoli Application Dependency Discovery Manager CVE-2019-0233, CVE-2019-0230 Vulnerability Details CVEID: CVE-2019-0233 DESCRIPTION: Apache Struts is vulnerable to a denial of service, caused by an access permission override when performing a fi...

9.8CVSS1.2AI score0.97399EPSS
Exploits15Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/11/04 9:7 a.m.39 views

Security Bulletin: Apache Struts (Publicly disclosed vulnerability) affects Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

Summary Apache Struts is vulnerable to a denial of service, caused by an access permission override when performing a file upload. By sending a specially crafted request, an attacker could exploit this vulnerability to cause subsequent upload actions to fail. Vulnerability Details CVEID:...

9.8CVSS0.7AI score0.97399EPSS
Exploits15Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/10/28 7:8 p.m.36 views

Security Bulletin: Apache Struts (Publicly disclosed vulnerability) affects Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

Summary Apache Struts is vulnerable to a denial of service, caused by an access permission override when performing a file upload. By sending a specially crafted request, an attacker could exploit this vulnerability to cause subsequent upload actions to fail. Vulnerability Details CVEID:...

9.8CVSS0.7AI score0.97399EPSS
Exploits15Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/09/23 4:29 a.m.42 views

Security Bulletin: Multiple vulnerabilities in Apache Struts affect Tivoli Netcool/OMNIbus WebGUI (CVE-2019-0233, CVE-2019-0230)

Summary Fix is available for vulnerabilities in Apache Struts affecting Tivoli Netcool/OMNIbus WebGUI CVE-2019-0233, CVE-2019-0230. Vulnerability Details CVEID: CVE-2019-0233 DESCRIPTION: Apache Struts is vulnerable to a denial of service, caused by an access permission override when performing a...

9.8CVSS1.4AI score0.97399EPSS
Exploits15Affected Software1
NVD
NVD
added 2020/09/14 5:15 p.m.17 views

CVE-2019-0233

An access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when performing a file upload...

7.5CVSS0.68761EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2020/09/14 5:15 p.m.40 views

CVE-2019-0233

An access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when performing a file upload...

7.5CVSS6.9AI score0.68761EPSS
Exploits0References1
CVE
CVE
added 2020/09/14 4:50 p.m.149 views

CVE-2019-0233

CVE-2019-0233 is an Apache Struts vulnerability (affecting Struts 2.0.0–2.5.20) where an access-permission override during file uploads can cause a Denial of Service. Exploitation requires a crafted request, and the impact is DoS during subsequent uploads. Remediation is to upgrade to a fixed Str...

7.5CVSS8.1AI score0.68761EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2020/08/18 7:29 p.m.37 views

CVE-2019-0233

An access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when performing a file upload...

5CVSS3.4AI score0.68761EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/08/17 12:0 a.m.32 views

Apache Struts Security Update (S2-059, S2-060)

Apache Struts is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.8AI score0.97399EPSS
Exploits15References5
ThreatPost
ThreatPost
added 2020/08/14 9:20 p.m.2281 views

PoC Exploit Targeting Apache Struts Surfaces on GitHub

Proof-of-concept exploit code surfaced on GitHub on Friday, raising the stakes on two existing Apache Struts 2 bugs that allow for remote code-execution and denial-of-service attacks on vulnerable installations. The Cybersecurity and Infrastructure Security Agency CISA issued an alert regarding t...

10CVSS9.5AI score0.99999EPSS
Exploits59References10
CISA
CISA
added 2020/08/14 12:0 a.m.64 views

Apache Releases Security Advisory for Struts 2

The Apache Software Foundation has released a security advisory to address vulnerabilities in Struts in the version range 2.0.0—2.5.20. An attacker could exploit one of these vulnerabilities to take control of an affected system. The current version, Struts 2.5.22, is not affected. The...

7.5CVSS2.7AI score0.97399EPSS
Exploits15References1
Tenable Nessus
Tenable Nessus
added 2020/08/14 12:0 a.m.137 views

Apache Struts 2.x <= 2.5.20 Multiple Vulnerabilities

The version of Apache Struts installed on the remote host is 2.x prior or equal to 2.5.20. It is, therefore, affected by multiple vulnerabilities: - The Apache Struts frameworks, when forced, performs double evaluation of attributes' values assigned to certain tags attributes such as id so it is...

9.8CVSS7.9AI score0.97399EPSS
Exploits15References4
Rows per page
Query Builder