Lucene search
F5F5:K23289753HistoryJul 18, 2017 - 12:00 a.m.
K23289753 : Apache Struts vulnerability CVE-2017-9791
2017-07-1800:00:00
my.f5.com
231
Security Advisory Description
The Struts 1 plugin in Apache Struts 2.3.x might allow remote code execution via a malicious field value passed in a raw message to the ActionMessage. (CVE-2017-9791)
Impact
There is no impact; F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 | |
| big-ip afm | eq | 12.1.0 |
Related
zdt
zdt
Apache Struts 2 - Struts 1 Plugin Showcase OGNL Code Execution Exploit
2018-05-18 00:00:00
Apache Struts 2.3.x Showcase - Remote Code Execution (PoC) Exploit
2017-07-14 00:00:00
myhack58
myhack58
cve
cve
CVE-2017-9791
2017-07-10 16:29:00
openvas
openvas
Apache Struts RCE Vulnerability (S2-048) - Version Check
2021-09-16 00:00:00
Apache Struts RCE Vulnerability (S2-048) - Active Check
2017-07-10 00:00:00
saint
saint
Apache Struts 2 Struts 1 plugin Showcase OGNL code execution
2018-06-06 00:00:00
Apache Struts 2 Struts 1 plugin Showcase OGNL code execution
2018-06-06 00:00:00
Apache Struts 2 Struts 1 plugin Showcase OGNL code execution
2018-06-06 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache Struts2 Struts1_Plugin Remote Code Execution (CVE-2017-9791)
2017-07-09 00:00:00
cisa_kev
cisa_kev
Apache Struts 1 Improper Input Validation Vulnerability
2022-02-10 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2017-07-07 21:38:00
nessus
nessus
Apache Struts 2.3.x Struts 1 plugin RCE (remote)
2017-09-01 00:00:00
Apache Struts 2.3.x Showcase App Struts 1 Plugin ActionMessage Class Error Message Input Handling RCE (S2-048)
2017-07-11 00:00:00
Oracle WebLogic Server Multiple Vulnerabilities
2017-10-04 00:00:00
exploitpack
exploitpack
Apache Struts 2.3.x Showcase - Remote Code Execution
2017-07-07 00:00:00
prion
prion
Remote code execution
2017-07-10 16:29:00
osv
osv
Code execution in Apache Struts 1 plugin
2022-05-13 01:26:13
CVE-2017-9791
2017-07-10 16:29:00
ibm
ibm
cvelist
cvelist
CVE-2017-9791
2017-07-07 00:00:00
packetstorm
packetstorm
Apache Struts 2.3.x Showcase Remote Code Execution
2017-07-14 00:00:00
Apache Struts 2 Struts 1 Plugin Showcase OGNL Code Execution
2018-05-16 00:00:00
redhatcve
redhatcve
CVE-2017-9791
2017-07-10 19:19:45
ubuntucve
ubuntucve
CVE-2017-9791
2017-07-10 00:00:00
nvd
nvd
CVE-2017-9791
2017-07-10 16:29:00
dsquare
dsquare
Apache Struts 2 Struts 1 Plugin ActionMessage < 2.3.32 RCE
2017-10-20 00:00:00
github
github
Code execution in Apache Struts 1 plugin
2022-05-13 01:26:13
exploitdb
exploitdb
Apache Struts 2.3.x Showcase - Remote Code Execution
2017-07-07 00:00:00
nuclei
nuclei
Apache Struts2 S2-053 - Remote Code Execution
2021-02-21 15:39:29
pentestit
pentestit
S2-052: Apache Struts2 REST Plugin Payloads (CVE-2017-9805)
2017-09-07 05:33:35
impervablog
impervablog
CVE-2017-9791: Analysis of RCE in the Struts Showcase App in Struts 1 Plugin
2017-07-13 19:12:31
CVE-2017-9805: Analysis of Apache Struts RCE Vulnerability in REST Plugin
2017-09-08 16:10:08
Impervaβs Top 10 Blogs of 2017
2017-12-18 17:43:16
attackerkb
attackerkb
CVE-2017-9791
2017-07-10 00:00:00
threatpost
threatpost
Apache Security Advisories Red Flag Wrong Versions in Patching Gaffe
2019-08-15 18:41:37
Oracle Patches Apache Struts, Reminds Users to Update Equifax Bug
2017-09-26 14:28:26
Self-Propagating Lucifer Malware Targets Windows Systems
2020-06-24 21:20:16
cisa
cisa
CISA Adds 15 Known Exploited Vulnerabilities to Catalog
2022-02-10 00:00:00
kitploit
kitploit
Vulmap - Web Vulnerability Scanning And Verification Tools
2020-12-25 11:30:00
qualysblog
qualysblog
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00