Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2015-5169
HistorySep 25, 2017 - 12:00 a.m.

CVE-2015-5169

2017-09-2500:00:00
ubuntu.com
ubuntu.com
10

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.005 Low

EPSS

Percentile

76.0%

JSON

Cross-site scripting (XSS) vulnerability in Apache Struts before 2.3.20.

Notes

Author Note
sbeattie only affects Struts 2.0.0 - 2.3.16.3

Related

osv 1
prion 1
github 1
jvn 1
cve 1
f5 2
cvelist 1
openvas 2
nvd 1
nessus 1
ibm 2
osv
osv
Cross-site Scripting in Apache Struts
2022-05-14 01:57:02
prion
prion
Cross site scripting
2017-09-25 21:29:00
github
github
Cross-site Scripting in Apache Struts
2022-05-14 01:57:02
jvn
jvn
JVN#95989300: Apache Struts vulnerable to cross-site scripting
2015-09-04 00:00:00
cve
cve
CVE-2015-5169
2017-09-25 21:29:00
f5
f5
SOL17449 - Apache Struts 2 vulnerability CVE-2015-5169
2015-10-16 00:00:00
K17449 : Apache Struts 2 vulnerability CVE-2015-5169
2015-10-16 00:00:00
cvelist
cvelist
CVE-2015-5169
2017-09-25 21:00:00
openvas
openvas
Apache Struts 'Problem Report' XSS Vulnerability (S2-025)
2017-10-06 00:00:00
Apache Struts Security Update (S2-021, S2-022, S2-023, S2-025)
2019-08-28 00:00:00
nvd
nvd
CVE-2015-5169
2017-09-25 21:29:00
nessus
nessus
Apache Struts 2 Multiple Vulnerabilities (S2-023) (S2-025)
2014-12-10 00:00:00
ibm
ibm
Security Bulletin: IBM Call Center and Apache Struts Struts upgrade strategy (various CVEs, see below)
2022-09-14 17:37:56
Security Bulletin: IBM Sterling Order Management Apache Struts upgrade strategy (various CVEs, see below)
2022-09-14 17:45:15

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.005 Low

EPSS

Percentile

76.0%

JSON
Related for UB:CVE-2015-5169
osv1prion1github1jvn1cve1f52cvelist1openvas2nvd1nessus1ibm2