Description

Possible Remote Code Execution attack when using the Struts REST plugin with XStream handler to handle XML payloads.

Remediation

Upgrade to Struts 2.5.13 or Struts 2.3.34.

References

Security Bulletin S2-052

Related Vulnerabilities

vBulletin PHP object injection vulnerability

Apache Struts2 remote code execution vulnerability

BigIP iRule Tcl code injection

HipChat for JIRA plugin - Velocity template injection

WordPress Plugin WP Hotel Booking Remote Code Execution (1.10.2)

Severity

High

Classification

CVE-2017-9805 CWE-94 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Code Execution Known Vulnerabilities Acumonitor