Lucene search

K
githubexploitE866BD32-FF81-5133-A2DE-05DF3B4964CB
HistoryApr 16, 2024 - 4:20 p.m.

Exploit for Files or Directories Accessible to External Parties in Apache Struts

2024-04-1616:20:04
103
apache struts
cve-2023-50164
file upload
remote code execution
docker
tomcat
pip
webshell
windows host

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.9

Confidence

High

EPSS

0.09

Percentile

94.6%

CVE-2023-50164: Apache Struts Vulnerable Application

A critic…

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.9

Confidence

High

EPSS

0.09

Percentile

94.6%