Lucene search
Ubuntu.comUB:CVE-2012-4387HistorySep 05, 2012 - 12:00 a.m.
CVE-2012-4387
2012-09-0500:00:00
ubuntu.com
ubuntu.com
7
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.016 Low
EPSS
Percentile
87.4%
Apache Struts 2.0.0 through 2.3.4 allows remote attackers to cause a denial
of service (CPU consumption) via a long parameter name, which is processed
as an OGNL expression.
Related
prion
prion
Code injection
2012-09-05 23:55:00
osv
osv
Denial of service in Apache Struts
2022-05-17 01:42:17
cve
cve
CVE-2012-4387
2012-09-05 23:55:00
github
github
Denial of service in Apache Struts
2022-05-17 01:42:17
nessus
nessus
Apache Struts 2.x < 2.3.4.1 Multiple Vulnerabilities (S2-010) (S2-011)
2018-09-11 00:00:00
openvas
openvas
Apache Struts Security Update (S2-010, S2-011)
2021-09-14 00:00:00
wallarmlab
wallarmlab
New Struts2 Remote Code Execution exploit caught in the wild
2017-03-09 00:15:54
ibm
ibm
Security Bulletin: Order Management could be subject to an Apache Struts vulnerability that could allow a remote attacker to execute arbitrary code on the system.
2024-04-12 17:44:56
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.016 Low
EPSS
Percentile
87.4%
Related for UB:CVE-2012-4387