Lucene search

Dsquare SecurityE-643

HistoryApr 20, 2018 - 12:00 a.m.

Apache Struts REST Plugin XStream RCE

2018-04-2000:00:00

Dsquare Security

549

0.975 High

EPSS

Percentile

100.0%

JSON

Remote command execution vulnerability in Apache Struts REST plugin XStream XML request

Vulnerability Type: Remote Command Execution

For the exploit source code contact DSquare Security sales team.

myhack58

Apache Struts2–052 vulnerability research alert-vulnerability warning-the black bar safety net

2017-09-06 00:00:00

saint

Apache Struts REST plugin XStream deserialization vulnerability

2017-09-08 00:00:00

Apache Struts REST plugin XStream deserialization vulnerability

2017-09-08 00:00:00

Apache Struts REST plugin XStream deserialization vulnerability

2017-09-08 00:00:00

thn

Critical Flaw in Apache Struts2 Lets Hackers Take Over Web Servers

2017-09-05 07:40:00

Equifax Suffered Data Breach After It Failed to Patch Old Apache Struts Flaw

2017-09-13 21:38:00

New Apache Struts RCE Flaw Lets Hackers Take Over Web Servers

2018-08-22 14:04:00

impervablog

RedisWannaMine Unveiled: New Cryptojacking Attack Powered by Redis and NSA Exploits

2018-03-08 18:45:38

How Reputation Intelligence Improves Application Security

2017-11-13 16:30:38

CVE-2017-9805: Analysis of Apache Struts RCE Vulnerability in REST Plugin

2017-09-08 16:10:08

redhatcve

CVE-2017-9805

2017-09-05 14:19:21

ubuntucve

CVE-2017-9805

2017-09-15 00:00:00

cisa_kev

Apache Struts Deserialization of Untrusted Data Vulnerability

2021-11-03 00:00:00

osv

CVE-2017-9805

2017-09-15 19:29:00

REST Plugin in Apache Struts uses an XStreamHandler with an instance of XStream for deserialization without any type filtering

2018-10-16 19:37:56

CVE-2017-12611

2017-09-20 17:29:00

metasploit

Apache Struts 2 REST Plugin XStream RCE

2017-09-08 00:30:48

nuclei

Apache Struts2 S2-052 - Remote Code Execution

2021-02-21 14:01:07

Apache Struts2 S2-053 - Remote Code Execution

2021-02-21 14:01:50

Apache Struts2 S2-053 - Remote Code Execution

2021-02-21 15:39:29

zdt

Apache Struts 2.5 - Remote Code Execution Exploit

2017-09-07 00:00:00

Apache Struts 2.5 < 2.5.12 - REST Plugin XStream Remote Code Execution Exploit

2017-09-07 00:00:00

cve

CVE-2017-9805

2017-09-15 19:29:00

cloudfoundry

CVE-2017-9805: Apache Struts Remote Code Execution | Cloud Foundry

2017-09-08 00:00:00

checkpoint_advisories

Apache Struts REST Plugin XStream Deserialization Remote Code Execution (CVE-2017-9805)

2017-09-06 00:00:00

attackerkb

CVE-2017-9805

2017-09-15 00:00:00

CVE-2017-9791

2017-07-10 00:00:00

github

REST Plugin in Apache Struts uses an XStreamHandler with an instance of XStream for deserialization without any type filtering

2018-10-16 19:37:56

The GitHub Security Lab’s journey to disclosing 500 CVEs in open source projects

2023-09-21 20:56:46

cvelist

CVE-2017-9805

2017-09-15 19:00:00

K84144321 : Apache Struts vulnerability CVE-2017-9805

2017-09-06 00:00:00

seebug

Apache Struts2 S2-052 (CVE-2017-9805)

2017-09-06 00:00:00

cisa

Oracle Patches Apache Vulnerabilities

2017-09-25 00:00:00

nvd

CVE-2017-9805

2017-09-15 19:29:00

cert

Apache Struts 2 framework REST plugin insecurely deserializes untrusted XML data

2017-09-06 00:00:00

nessus

Apache Struts 2 REST Plugin XStream XML Request Deserialization RCE

2017-09-06 00:00:00

Apache Struts 2.1.x >= 2.1.2 / 2.2.x / 2.3.x < 2.3.34 / 2.5.x < 2.5.13 Multiple Vulnerabilities (S2-050 - S2-053)

2017-09-05 00:00:00

MySQL Enterprise Monitor 3.2.x < 3.2.9.2249 / 3.3.x < 3.3.5.3292 / 3.4.x < 3.4.3.4225 Multiple Vulnerabilities (October 2017 CPU)

2017-09-28 00:00:00

packetstorm

Apache Struts 2.5.12 XStream Remote Code Execution

2017-09-07 00:00:00

Apache Struts 2 REST Plugin XStream Remote Code Execution

2017-09-07 00:00:00

openvas

Apache Struts Security Update (S2-052) - Active Check

2017-09-07 00:00:00

Apache Struts Security Update (S2-051, S2-052) - Version Check

2019-08-28 00:00:00

trendmicroblog

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of September 4, 2017

2017-09-08 14:23:58

exploitpack

Apache Struts 2.5 2.5.12 - REST Plugin XStream Remote Code Execution

2017-09-06 00:00:00

prion

Deserialization of untrusted data

2017-09-15 19:29:00

exploitdb

Apache Struts 2.5 < 2.5.12 - REST Plugin XStream Remote Code Execution

2017-09-06 00:00:00

threatpost

Patch Released for Critical Apache Struts Bug

2017-09-05 14:10:54

Apache Struts 2 Flaw Uncovered: ‘More Critical Than Equifax Bug’

2018-08-23 16:46:57

Equifax Confirms March Struts Vulnerability Behind Breach

2017-09-14 16:00:34

talosblog

Another Apache Struts Vulnerability Under Active Exploitation

2017-09-07 15:42:00

2018 in Snort Rules

2019-02-06 08:19:00

pentestit

S2-052: Apache Struts2 REST Plugin Payloads (CVE-2017-9805)

2017-09-07 05:33:35

cisco

Multiple Vulnerabilities in Apache Struts 2 Affecting Cisco Products: September 2017

2017-09-07 21:00:00

ibm

Security Bulletin: IBM OpenPages GRC Platform Web Applications are NOT vulnerable to (CVE-2017-9805 , CVE-2017-9804, CVE-2017-9793)

2018-06-15 23:48:02

fortinet

Apache Struts RCE Vulnerability

2017-09-29 00:00:00

kitploit

Sn1per v6.0 - Automated Pentest Framework For Offensive Security Experts

2018-11-24 12:43:00

Sn1per v5.0 - Automated Pentest Recon Scanner

2018-07-05 13:45:00

Sn1per v7.0 - Automated Pentest Framework For Offensive Security Experts

2019-05-12 13:09:00

qualysblog

Managing CISA Known Exploited Vulnerabilities with Qualys VMDR

2022-02-23 05:39:00

oracle

Oracle Critical Patch Update - October 2017

2017-10-17 00:00:00

0.975 High

EPSS

Percentile

100.0%

JSON

Apache Struts REST Plugin XStream RCE

Related