Aerohive Aerohive Network Device Management System suffers from s2-045 Remote Command Execution Vulnerability

Aerohive Networks HiveManager NMS is the management system for Aerohive's networking products.HiveManager enables simple policy creation, firmware upgrades, configuration updates, and centralized monitoring from a single console. Aerohive network equipment management system website packaging usin...

Aruba Networks - ClearPass Policy Manager suffers from s2-045 remote command execution vulnerability

Aruba Networks ClearPass is an access management system from Aruba Networks that integrates network control, application and device management capabilities. The Aruba Networks - ClearPass Policy Manager web package uses Apache Struts xwork as the web application framework. The file upload functio...

S2-045 Remote Code Execution Vulnerability in 263 Enterprise Email Sites

263 enterprise mailbox site is an electronic mailbox launched by Beijing 263 Enterprise Communication Co. The 263 enterprise mailbox site uses Apache Struts xwork as the website application framework, the file upload function of the Jakarta plug-in of the framework has a remote command execution...

S2-045: Struts 2 Remote Code Execution vulnerability（CVE-2017-5638）

Based on the Jakarta plugin plugin Struts remote code execution vulnerability, a malicious user can upload a file by modifying the HTTP request header Content-Type value to trigger the vulnerability, and then execute the system command. Sound detection methodthe detection method by the constant...