Description

Possible Remote Code Execution attack when using the Struts REST plugin with XStream handler to handle XML payloads.

Remediation

Upgrade to Struts 2.5.13 or Struts 2.3.34.

References

Security Bulletin S2-052

Related Vulnerabilities

Liferay TunnelServlet Deserialization Remote Code Execution

Apache Struts2 Remote Command Execution (S2-048)

Oracle Reports rwservlet vulnerabilities

Plone arbitrary code execution

Apache Log4j2 JNDI Remote Code Execution (delayed)

Severity

High

Classification

CVE-2017-9805 CWE-94 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Code Execution Known Vulnerabilities Acumonitor