Description

Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when using results with no namespace and in same time, its upper action(s) have no or wildcard namespace.

Successfully exploiting this issue may allow an attacker to execute arbitrary code in the context of the affected application.

Remediation

Upgrade to Apache Struts version 2.3.35 or 2.5.17.

References

S2-057

St2-057

Related Vulnerabilities

WordPress caching plugins PHP code execution

WordPress Plugin Photo Gallery, Images, Slider in Rbs Image Gallery Remote Code Execution (2.0.14)

MobileIron Remote Code Execution via LogService

PHPUnit Remote Code Execution

Drupal Core 8.8.x Remote Code Execution (8.8.0 - 8.8.7)

Severity

High

Classification

CVE-2018-11776 CWE-917 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Code Execution