Lucene search
F5F5:K23432135HistoryJun 27, 2016 - 12:00 a.m.
K23432135 : Apache Struts 2 vulnerability CVE-2016-3093
2016-06-2700:00:00
my.f5.com
32
Security Advisory Description
Apache Struts 2.0.0 through 2.3.24.1 does not properly cache method references when used with OGNL before 3.0.12, which allows remote attackers to cause a denial of service (block access to a web site) via unspecified vectors. (CVE-2016-3093)
Impact
The Object-Graph Navigation Language (OGNL) used by the Apache Struts framework uses an improper implementation of cache to store method references. When the BIG-IP AAM system is provisioned, a remote attacker can attempt to initiate a denial-of-service (DoS) attack.
Related
redhatcve
redhatcve
CVE-2016-3093
2016-06-01 13:48:53
f5
f5
SOL23432135 - Apache Struts 2 vulnerability CVE-2016-3093
2016-06-27 00:00:00
ibm
ibm
nvd
nvd
CVE-2016-3093
2016-06-07 18:59:03
cve
cve
CVE-2016-3093
2016-06-07 18:59:03
nessus
nessus
F5 Networks BIG-IP : Apache Struts 2 vulnerability (K23432135)
2016-06-28 00:00:00
cvelist
cvelist
CVE-2016-3093
2016-06-07 18:00:00
osv
osv
Denial of service in Apache Struts
2022-05-17 03:42:18
ubuntucve
ubuntucve
CVE-2016-3093
2016-06-07 00:00:00
prion
prion
Design/Logic Flaw
2016-06-07 18:59:00
github
github
Denial of service in Apache Struts
2022-05-17 03:42:18
openvas
openvas
Apache Struts Security Update (S2-028, S2-030, S2-034)
2016-06-06 00:00:00
wallarmlab
wallarmlab
New Struts2 Remote Code Execution exploit caught in the wild
2017-03-09 00:15:54