Lucene search

Basic search
Lucene search
Search by product

Vendors

Products

BUGTRAQSECURITYVULNS:VULN:13701

HistoryMay 07, 2014 - 12:00 a.m.

Apache Struts multiple security vulnerabilities

2014-05-0700:00:00

BUGTRAQ

vulners.com

JSON

Few ClassLoader manipulation vulnerabilities with potential RCE impact.

CPENameOperatorVersion
strutseq2.3
strutseq1.3

CPE	Name	Operator	Version
	struts	eq	2.3
	struts	eq	1.3

References

vulners.com/securityvulns/securityvulns:doc:30527

vulners.com/securityvulns/securityvulns:doc:30528

vulners.com/securityvulns/securityvulns:doc:30529

vulners.com/securityvulns/securityvulns:doc:30689

zdt 2

securityvulns 4

checkpoint_advisories 2

prion 7

cve 7

jvn 3

osv 7

github 4

ubuntucve 4

packetstorm 2

ibm 82

threatpost 1

nessus 26

vmware 2

f5 8

cert 1

hackerone 1

openvas 13

redhat 7

debian 2

seebug 1

oraclelinux 2

fedora 1

suse 1

mageia 1

gentoo 1

debiancve 1

centos 1

veracode 1

ubuntu 1

redhatcve 1

huawei 1

rapid7blog 1

zdt

Apache Struts < 1.3.10 / < 2.3.16.2 - ClassLoader Manipulation Remote Code Execution Exploit

2017-03-23 00:00:00

Apache Struts ClassLoader Manipulation Remote Code Execution Exploit

2014-05-03 00:00:00

securityvulns

[ANN][SECURITY] ClassLoader manipulation issue confirmed for Struts 1 - CVE-2014-0114

2014-05-02 00:00:00

[ANN][SECURITY] Struts 1 - CVE-2014-0114 -Mitigation Advice Available, Possible RCE Impact

2014-05-02 00:00:00

Apache commons-beanutils code exeuction

2014-06-17 00:00:00

checkpoint_advisories

Apache Struts ParametersInterceptor ClassLoader Security Bypass (CVE-2014-0094; CVE-2014-0112; CVE-2014-0113; CVE-2014-0114)

2014-04-25 00:00:00

Apache Struts ActionForm ClassLoader Security Bypass (CVE-2014-0114)

2014-05-18 00:00:00

prion

Design/Logic Flaw

2014-04-29 10:37:00

Security feature bypass

2014-03-11 13:00:00

Code injection

2014-04-30 10:49:00

cve

CVE-2014-0112

2014-04-29 10:37:00

CVE-2014-0094

2014-03-11 13:00:00

CVE-2014-0114

2014-04-30 10:49:00

jvn

JVN#19294237: Apache Struts vulnerable to ClassLoader manipulation

2014-04-25 00:00:00

JVN#30962312: TERASOLUNA Server Framework for Java(Web) vulnerable to ClassLoader manipulation

2014-06-17 00:00:00

JVN#19118282: Seasar S2Struts vulnerable to ClassLoader manipulation

2014-07-15 00:00:00

osv

ClassLoader manipulation in Apache Struts

2022-05-14 00:54:16

ClassLoader manipulation in Apache Struts

2022-05-14 00:54:15

libstruts1.2-java - security update

2014-09-17 00:00:00

github

ClassLoader manipulation in Apache Struts

2022-05-14 00:54:16

ClassLoader manipulation in Apache Struts

2022-05-14 00:54:15

Arbitrary code execution in Apache Commons BeanUtils

2020-06-10 23:38:01

ubuntucve

CVE-2014-0112

2014-04-29 00:00:00

CVE-2014-0094

2014-03-11 00:00:00

CVE-2014-0114

2014-04-30 00:00:00

packetstorm

Apache Struts ClassLoader Manipulation Remote Code Execution

2014-05-02 00:00:00

OSCAR EMR 15.21beta361 XSS / Disclosure / CSRF / Insecure Direct Object Reference

2018-08-23 00:00:00

ibm

Security Bulletin: The IBM FlashSystem V840 product model numbers AC0 and AC1 nodes are affected by vulnerabilities in Apache’s Struts library

2018-06-18 00:08:33

Security Bulletin: The IBM FlashSystem 840 and V840 product model number AE1 nodes are affected by vulnerabilities in Apache’s Struts library

2023-02-18 01:45:50

Security Bulletin: The IBM V840 product model number AE1 node is affected by vulnerabilities in Apache’s Struts library

2018-06-18 00:08:27

threatpost

VMware Patches Apache Struts Flaws in vCOPS

2014-06-25 13:59:49

nessus

VMware vCenter Operations Management Suite Multiple Vulnerabilities (VMSA-2014-0007)

2014-07-07 00:00:00

Apache Struts 2 'class' Parameter ClassLoader Manipulation

2014-03-26 00:00:00

MySQL Enterprise Monitor < 2.3.17 Multiple Vulnerabilities

2015-05-08 00:00:00

vmware

VMware product updates address security vulnerabilities in Apache Struts library

2014-06-24 00:00:00

VMware product updates address security vulnerabilities in Apache Struts library

2014-06-24 00:00:00

SOL15261 - Apache Struts vulnerability CVE-2014-0112

2014-05-15 00:00:00

SOL14933 - Apache Struts vulnerability CVE-2013-2251

2014-01-20 00:00:00

SOL15262 - Apache Struts vulnerability CVE-2014-0113

2014-05-15 00:00:00

cert

Apache Struts2 ClassLoader allows access to class properties via request parameters

2014-04-25 00:00:00

hackerone

U.S. Dept Of Defense: Remote code execution vulnerability on a DoD website

2016-12-19 23:00:16

openvas

Apache Struts 'CVE-2014-0094' ClassLoader Manipulation Vulnerabilities (S2-020) (Active Check)

2014-05-14 00:00:00

RedHat Update for struts RHSA-2014:0474-01

2014-05-12 00:00:00

RedHat Update for struts RHSA-2014:0474-01

2014-05-12 00:00:00

redhat

(RHSA-2014:0500) Important: struts security update

2014-05-14 00:00:00

(RHSA-2014:0474) Important: struts security update

2014-05-07 00:00:00

(RHSA-2014:0497) Important: Red Hat JBoss Fuse 6.1.0 security update

2014-05-14 18:02:20

debian

[SECURITY] [DSA 2940-1] libstruts1.2-java security update

2014-08-21 06:39:48

[SECURITY] [DLA 57-1] libstruts1.2-java security update

2014-09-17 12:59:07

seebug

Apache Struts ClassLoader操作漏洞

2014-03-10 00:00:00

oraclelinux

struts security update

2014-05-06 00:00:00

apache-commons-beanutils security update

2020-01-22 00:00:00

fedora

[SECURITY] Fedora 20 Update: struts-1.3.10-10.fc20

2014-08-23 02:00:36

suse

Security update for struts (important)

2014-07-16 01:10:20

mageia

Updated struts packages fix CVE-2014-0114

2014-05-15 02:13:20

gentoo

Commons-BeanUtils: Arbitrary code execution

2016-07-20 00:00:00

debiancve

CVE-2014-0114

2014-04-30 10:49:00

centos

struts security update

2014-05-07 14:04:43

veracode

Class Loader Manipulation With CookieInterceptor

2014-06-06 18:13:23

ubuntu

Apache Commons BeanUtils vulnerabilities

2021-03-15 00:00:00

redhatcve

CVE-2019-3834

2019-10-02 20:20:56

huawei

Security Advisory-Apache Struts2 vulnerability on Huawei multiple products

2014-07-07 00:00:00

rapid7blog

Spring4Shell: Zero-Day Vulnerability in Spring Framework (CVE-2022-22965)

2022-03-30 22:33:54

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

JSON

Related for SECURITYVULNS:VULN:13701