Lucene search
CERTVU:834067HistoryMar 14, 2017 - 12:00 a.m.
Apache Struts 2 is vulnerable to remote code execution
2017-03-1400:00:00
www.kb.cert.org
786
0.975 High
EPSS
Percentile
100.0%
Overview
Apache Struts, versions 2.3.5 - 2.3.31 and 2.5 - 2.5.10, is vulnerable to code injection leading to remote code execution (RCE).
Description
CWE-94: Improper Control of Generation of Code - CVE-2017-5638
An attacker can execute arbitrary OGNL code included in the “Content-Type” header of a file upload.
This vulnerability is actively being exploited.
Impact
An unauthenticated remote attacker can execute arbitrary commands with the privileges of the user running Apache Struts.
Solution
Apply an update
Update to Apache Struts 2.3.32 or 2.5.10.1
If you are unable to update Struts, please see the workaround suggested by Apache here.
Vendor Information
834067
Filter by status: All Affected Not Affected Unknown
Filter by content: __ Additional information available
__ Sort by: Status Alphabetical
Expand all
Javascript is disabled. Click here to view vendors.
Apache Struts Affected
Updated: March 14, 2017
Status
Affected
Vendor Statement
We have not received a statement from the vendor.
Vendor Information
We are not aware of further vendor information regarding this vulnerability.
Vendor References
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | 10 | AV:N/AC:L/Au:N/C:C/I:C/A:C |
| Temporal | 8.7 | E:H/RL:OF/RC:C |
| Environmental | 8.7 | CDP:N/TD:H/CR:ND/IR:ND/AR:ND |
References
- <https://cwiki.apache.org/confluence/display/WW/S2-045>
- <http://blog.talosintelligence.com/2017/03/apache-0-day-exploited.html>
- <https://www.imperva.com/blog/2017/03/cve-2017-5638-new-remote-code-execution-rce-vulnerability-in-apache-struts-2/>
- <http://blog.trendmicro.com/trendlabs-security-intelligence/cve-2017-5638-apache-struts-vulnerability-remote-code-execution/>
- <https://github.com/rapid7/metasploit-framework/issues/8064>
- <https://www.exploit-db.com/exploits/41570/>
- <https://cwe.mitre.org/data/definitions/94.html>
Acknowledgements
This document was written by Trent Novelly.
Other Information
| CVE IDs: | CVE-2017-5638 |
|---|---|
| Date Public: | 2017-03-06 Date First Published: |
References
blog.talosintelligence.com/2017/03/apache-0-day-exploited.html
blog.trendmicro.com/trendlabs-security-intelligence/cve-2017-5638-apache-struts-vulnerability-remote-code-execution/
cwe.mitre.org/data/definitions/94.html
cwiki.apache.org/confluence/display/WW/S2-045
github.com/rapid7/metasploit-framework/issues/8064
www.exploit-db.com/exploits/41570/
www.imperva.com/blog/2017/03/cve-2017-5638-new-remote-code-execution-rce-vulnerability-in-apache-struts-2/
Related
hackerone
hackerone
U.S. Dept Of Defense: Remote Code Execution (RCE) in a DoD website
2017-03-09 17:59:08
U.S. Dept Of Defense: Remote code execution vulnerability on a DoD website
2017-03-13 04:14:12
U.S. Dept Of Defense: Remote Code Execution (RCE) in a DoD website
2017-03-13 13:22:29
nessus
nessus
Apache Struts 2.3.5 - 2.3.31 / 2.5.x < 2.5.10.1 Jakarta Multipart Parser RCE (remote)
2017-03-08 00:00:00
Apache Struts 2 RCE (CVE-2017-5638) (deprecated)
2017-04-12 00:00:00
qualysblog
qualysblog
How To Prioritize Vulnerabilities in a Modern IT Environment
2018-05-07 16:00:10
The Sky Is Falling! Responding Rationally to Headline Vulnerabilities
2018-04-19 23:00:03
ibm
ibm
malwarebytes
malwarebytes
Equifax breach: What you need to know [updated]
2017-09-08 07:02:47
openvas
openvas
Atlassian Bamboo Struts2 RCE Vulnerability
2017-03-15 00:00:00
Cisco Identity Services Engine Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability
2017-03-13 00:00:00
Apache Struts Security Update (S2-045, S2-046) - Version Check
2021-04-06 00:00:00
myhack58
myhack58
Apache Struts2 high-risk vulnerabilities cause the Enterprise Server is the invasion mounted KoiMiner mining Trojan-vulnerability warning-the black bar safety net
2018-07-10 00:00:00
threatpost
threatpost
Equifax to Pay $700 Million in 2017 Data Breach Settlement
2019-07-22 14:31:39
Equifax Says 2.4 Million More People Impacted By Massive 2017 Breach
2018-03-02 15:12:57
Attacks Heating Up Against Apache Struts 2 Vulnerability
2017-03-09 12:25:46
canvas
canvas
Immunity Canvas: STRUTS_OGNL
2017-03-11 02:59:00
packetstorm
packetstorm
Apache Struts 2 2.3.x / 2.5.x Remote Code Execution
2017-03-10 00:00:00
Apache Struts Jakarta Multipart Parser OGNL Injection
2017-03-14 00:00:00
thn
thn
New Apache Struts Zero-Day Vulnerability Being Exploited in the Wild
2017-03-09 01:03:00
Whoops, Turns Out 2.5 Million More Americans Were Affected By Equifax Breach
2017-10-02 21:23:00
New NKAbuse Malware Exploits NKN Blockchain Tech for DDoS Attacks
2023-12-15 05:25:00
vmware
vmware
securelist
securelist
Unveiling NKAbuse: a new multiplatform threat abusing the NKN protocol
2023-12-14 13:00:40
trendmicroblog
trendmicroblog
Linux is secure…right?
2017-06-15 19:00:13
Sound, Fury, And Nothing One Year After Equifax
2018-09-07 12:00:34
cisa_kev
cisa_kev
Apache Struts Remote Code Execution Vulnerability
2021-11-03 00:00:00
seebug
seebug
S2-046: Struts 2 Remote Code Execution vulnerability(CVE-2017-5638)
2017-03-21 00:00:00
S2-045: Struts 2 Remote Code Execution vulnerability(CVE-2017-5638)
2017-03-06 00:00:00
cisco
cisco
checkpoint_advisories
checkpoint_advisories
Apache Struts 2 Content-Disposition Remote Code Execution (CVE-2017-5638)
2017-08-09 00:00:00
Apache Struts2 Content-Type Remote Code Execution (CVE-2017-5638)
2017-03-07 00:00:00
impervablog
impervablog
The State of Web Application Vulnerabilities in 2017
2017-12-28 17:20:47
cloudfoundry
cloudfoundry
CVE-2017-5638: Apache Struts Remote Code Execution | Cloud Foundry
2017-03-14 00:00:00
zdt
zdt
Apache Struts Jakarta Multipart Parser OGNL Injection Exploit
2017-03-15 00:00:00
Apache Struts 2 2.3.x / 2.5.x Remote Code Execution Exploit
2017-03-12 00:00:00
cvelist
cvelist
CVE-2017-5638
2017-03-11 02:11:00
cve
cve
CVE-2017-5638
2017-03-11 02:59:00
veracode
veracode
Remote Code Execution (RCE) Through Jakarta Multipart Parser
2017-03-09 12:39:55
huawei
huawei
github
github
Apache Struts vulnerable to remote arbitrary command execution due to improper input validation
2018-10-18 19:24:26
Bypassing OGNL sandboxes for fun and charities
2023-01-27 16:00:49
nuclei
nuclei
Apache Struts 2 - Remote Command Execution
2020-08-19 13:13:31
osv
osv
CVE-2017-5638
2017-03-11 02:59:00
krebs
krebs
Equifax Hackers Stole 200k Credit Card Accounts in One Fell Swoop
2017-09-14 18:03:12
saint
saint
Apache Struts 2 Jakarta Multipart Parser file upload command execution
2017-03-16 00:00:00
Apache Struts 2 Jakarta Multipart Parser file upload command execution
2017-03-16 00:00:00
Apache Struts 2 Jakarta Multipart Parser file upload command execution
2017-03-16 00:00:00
kitploit
kitploit
struts-pwn - An exploit for Apache Struts CVE-2017-5638
2017-03-14 13:34:00
atlassian
atlassian
Apache Struts 2 Remote Code Execution (CVE-2017-5638)
2017-03-10 04:57:51
Apache Struts 2 Remote Code Execution (CVE-2017-5638)
2017-03-10 04:31:09
Apache Struts 2 Remote Code Execution (CVE-2017-5638)
2017-03-10 04:57:51
lenovo
lenovo
Apache Struts Open Source Framework Remote Code Execution - us
2017-06-09 00:00:00
f5
f5
K43451236 : Apache Struts 2 vulnerability CVE-2017-5638
2017-03-09 00:00:00
prion
prion
Design/Logic Flaw
2017-03-11 02:59:00
attackerkb
attackerkb
CVE-2017-5638
2017-03-11 00:00:00
CVE-2019-0230
2020-09-14 00:00:00
ubuntucve
ubuntucve
CVE-2017-5638
2017-03-11 00:00:00
rapid7community
rapid7community
Apache Struts Vulnerability (CVE-2017-5638) Exploit Traffic
2017-03-15 14:29:55
redhatcve
redhatcve
CVE-2017-5638
2017-03-08 11:53:37
pentestit
pentestit
UPDATE: Infection Monkey 1.6.1
2018-12-03 22:28:53
JexBoss: Java Deserialization Verification & EXploitation Tool!
2017-08-11 06:52:45
talosblog
talosblog
Another Apache Struts Vulnerability Under Active Exploitation
2017-09-07 15:42:00
2017 in Snort Signatures.
2018-01-29 11:37:00
2018 in Snort Rules
2019-02-06 08:19:00
nmap
nmap
http-vuln-cve2017-5638 NSE Script
2017-03-10 17:53:45
ics
ics
Top 10 Routinely Exploited Vulnerabilities
2020-05-12 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2017
2017-04-18 00:00:00
Oracle Critical Patch Update Advisory - July 2017
2018-03-20 00:00:00