cvelistv5 - cve-2018-11776

CVE-2018-11776 (GCVE-0-2018-11776)

Vulnerability from cvelistv5 – Published: 2018-08-22 13:00 – Updated: 2025-10-21 23:45

CISA

Summary

Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn't have value and action set and in same time, its upper package have no or wildcard namespace.

Severity ?

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

Remote Code Execution

Assigner

apache

References

URL

Tags

	http://www.securitytracker.com/id/1041888	vdb-entry
	https://www.exploit-db.com/exploits/45367/	exploit
	https://www.exploit-db.com/exploits/45262/	exploit
	http://www.securityfocus.com/bid/105125	vdb-entry
	http://www.securitytracker.com/id/1041547	vdb-entry
	https://www.exploit-db.com/exploits/45260/	exploit
	https://lists.apache.org/thread.html/r6d03e45b81e…	mailing-list
	http://www.oracle.com/technetwork/security-adviso…
	https://www.oracle.com/security-alerts/cpujul2020.html
	https://www.oracle.com/technetwork/security-advis…
	https://security.netapp.com/advisory/ntap-2018101…
	https://cwiki.apache.org/confluence/display/WW/S2-057
	https://psirt.global.sonicwall.com/vuln-detail/SN…
	http://www.oracle.com/technetwork/security-adviso…
	https://lgtm.com/blog/apache_struts_CVE-2018-11776
	https://security.netapp.com/advisory/ntap-2018082…
	http://www.arubanetworks.com/assets/alert/ARUBA-P…
	https://github.com/hook-s3c/CVE-2018-11776-Python-PoC
	http://packetstormsecurity.com/files/172830/Apach…

Impacted products

	Vendor	Product	Version
	Apache Software Foundation	Apache Struts	Affected: 2.3 to 2.3.34 Affected: 2.5 to 2.5.16

CISA Known Exploited Vulnerability

Data from the CISA Known Exploited Vulnerabilities Catalog

Date added: 2021-11-03

Due date: 2022-05-03

Required action: Apply updates per vendor instructions.

Used in ransomware: Unknown

Notes: https://nvd.nist.gov/vuln/detail/CVE-2018-11776

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T08:17:09.231Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1041888",
            "tags": [
              "vdb-entry",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1041888"
          },
          {
            "name": "45367",
            "tags": [
              "exploit",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/45367/"
          },
          {
            "name": "45262",
            "tags": [
              "exploit",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/45262/"
          },
          {
            "name": "105125",
            "tags": [
              "vdb-entry",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/105125"
          },
          {
            "name": "1041547",
            "tags": [
              "vdb-entry",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1041547"
          },
          {
            "name": "45260",
            "tags": [
              "exploit",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/45260/"
          },
          {
            "name": "[announce] 20200131 Apache Software Foundation Security Report: 2019",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20181018-0002/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lgtm.com/blog/apache_struts_CVE-2018-11776"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20180822-0001/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/hook-s3c/CVE-2018-11776-Python-PoC"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.1,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2018-11776",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-02-06T21:01:33.678556Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2021-11-03",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-11776"
              },
              "type": "kev"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T23:45:48.386Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-11776"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2021-11-03T00:00:00+00:00",
            "value": "CVE-2018-11776 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache Struts",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "status": "affected",
              "version": "2.3 to 2.3.34"
            },
            {
              "status": "affected",
              "version": "2.5 to 2.5.16"
            }
          ]
        }
      ],
      "datePublic": "2018-08-22T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn\u0027t have value and action set and in same time, its upper package have no or wildcard namespace."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Remote Code Execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-06-12T00:00:00.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "name": "1041888",
          "tags": [
            "vdb-entry"
          ],
          "url": "http://www.securitytracker.com/id/1041888"
        },
        {
          "name": "45367",
          "tags": [
            "exploit"
          ],
          "url": "https://www.exploit-db.com/exploits/45367/"
        },
        {
          "name": "45262",
          "tags": [
            "exploit"
          ],
          "url": "https://www.exploit-db.com/exploits/45262/"
        },
        {
          "name": "105125",
          "tags": [
            "vdb-entry"
          ],
          "url": "http://www.securityfocus.com/bid/105125"
        },
        {
          "name": "1041547",
          "tags": [
            "vdb-entry"
          ],
          "url": "http://www.securitytracker.com/id/1041547"
        },
        {
          "name": "45260",
          "tags": [
            "exploit"
          ],
          "url": "https://www.exploit-db.com/exploits/45260/"
        },
        {
          "name": "[announce] 20200131 Apache Software Foundation Security Report: 2019",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E"
        },
        {
          "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
        },
        {
          "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
        },
        {
          "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20181018-0002/"
        },
        {
          "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
        },
        {
          "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012"
        },
        {
          "url": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html"
        },
        {
          "url": "https://lgtm.com/blog/apache_struts_CVE-2018-11776"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20180822-0001/"
        },
        {
          "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt"
        },
        {
          "url": "https://github.com/hook-s3c/CVE-2018-11776-Python-PoC"
        },
        {
          "url": "http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2018-11776",
    "datePublished": "2018-08-22T13:00:00.000Z",
    "dateReserved": "2018-06-05T00:00:00.000Z",
    "dateUpdated": "2025-10-21T23:45:48.386Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "cisa_known_exploited": {
      "cveID": "CVE-2018-11776",
      "cwes": "[\"CWE-20\"]",
      "dateAdded": "2021-11-03",
      "dueDate": "2022-05-03",
      "knownRansomwareCampaignUse": "Unknown",
      "notes": "https://nvd.nist.gov/vuln/detail/CVE-2018-11776",
      "product": "Struts",
      "requiredAction": "Apply updates per vendor instructions.",
      "shortDescription": "Apache Struts contains a vulnerability that allows for remote code execution under two circumstances. One, where the alwaysSelectFullNamespace option is true and the value isn\u0027t set for a result defined in underlying configurations and in same time, its upper package configuration have no or wildcard namespace.  Or, using URL tag which doesn\u0027t have value and action set and in same time, its upper package configuration have no or wildcard namespace.",
      "vendorProject": "Apache",
      "vulnerabilityName": "Apache Struts Remote Code Execution Vulnerability"
    },
    "fkie_nvd": {
      "cisaActionDue": "2022-05-03",
      "cisaExploitAdd": "2021-11-03",
      "cisaRequiredAction": "Apply updates per vendor instructions.",
      "cisaVulnerabilityName": "Apache Struts Remote Code Execution Vulnerability",
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.0.4\", \"versionEndExcluding\": \"2.3.35\", \"matchCriteriaId\": \"688F84A7-B698-4343-9F7B-FD68B2218035\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.5.0\", \"versionEndExcluding\": \"2.5.17\", \"matchCriteriaId\": \"0D66D46C-389B-4C37-9EEE-6301774719FA\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*\", \"versionStartIncluding\": \"7.3\", \"matchCriteriaId\": \"BD075607-09B7-493E-8611-66D041FFDA62\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*\", \"versionStartIncluding\": \"9.5\", \"matchCriteriaId\": \"0CB28AF5-5AF0-4475-A7B6-12E1795FFDCB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1BE6C1F-2565-4E97-92AA-16563E5660A5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5735E553-9731-4AAC-BCFF-989377F817B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BDFB1169-41A0-4A86-8E4F-FDA9730B1E94\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:communications_policy_management:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"12.5.0\", \"matchCriteriaId\": \"0E8AF73E-8AC6-4F65-A6F0-DBB2CC7A613F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.3.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7582B307-3899-4BBB-B868-BC912A4D0109\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D26F3E23-F1A9-45E7-9E5F-0C0A24EE3783\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"3.4.9.4237\", \"matchCriteriaId\": \"8A94B32D-6B5F-4E42-8345-4F9126A89435\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.0.0\", \"versionEndIncluding\": \"4.0.6.5281\", \"matchCriteriaId\": \"EF71D94F-EFC5-4390-A380-AC0E5DB05516\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"8.0.0\", \"versionEndIncluding\": \"8.0.2.8191\", \"matchCriteriaId\": \"33EFAF19-A639-47AD-9CDC-D174C91F0F00\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn\u0027t have value and action set and in same time, its upper package have no or wildcard namespace.\"}, {\"lang\": \"es\", \"value\": \"Apache Struts, desde la versi\\u00f3n 2.3 hasta la 2.3.34 y desde la versi\\u00f3n 2.5 hasta la 2.5.16, sufre de una posible ejecuci\\u00f3n remota de c\\u00f3digo cuando el valor de alwaysSelectFullNamespace es \\\"true\\\" (establecido por el usuario o por un plugin como Convention Plugin). Adem\\u00e1s, los resultados se emplean sin ning\\u00fan espacio de nombres y, al mismo tiempo, el paquete superior no tiene espacio de nombres o contiene caracteres comod\\u00edn. De manera similar a como pasa con los resultados, existe la misma posibilidad al emplear la etiqueta url, que no tiene un valor y acci\\u00f3n definidos y, adem\\u00e1s, su paquete superior no tiene espacio de nombres o contiene caracteres comod\\u00edn.\"}]",
      "id": "CVE-2018-11776",
      "lastModified": "2024-11-21T03:44:00.740",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.1, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.2, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 9.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2018-08-22T13:29:00.753",
      "references": "[{\"url\": \"http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt\", \"source\": \"security@apache.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html\", \"source\": \"security@apache.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html\", \"source\": \"security@apache.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/105125\", \"source\": \"security@apache.org\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041547\", \"source\": \"security@apache.org\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041888\", \"source\": \"security@apache.org\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://cwiki.apache.org/confluence/display/WW/S2-057\", \"source\": \"security@apache.org\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/hook-s3c/CVE-2018-11776-Python-PoC\", \"source\": \"security@apache.org\", \"tags\": [\"Exploit\", \"Third Party Advisory\"]}, {\"url\": \"https://lgtm.com/blog/apache_struts_CVE-2018-11776\", \"source\": \"security@apache.org\", \"tags\": [\"Exploit\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E\", \"source\": \"security@apache.org\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180822-0001/\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20181018-0002/\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45260/\", \"source\": \"security@apache.org\", \"tags\": [\"Exploit\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45262/\", \"source\": \"security@apache.org\", \"tags\": [\"Exploit\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45367/\", \"source\": \"security@apache.org\", \"tags\": [\"Exploit\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2020.html\", \"source\": \"security@apache.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\", \"source\": \"security@apache.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/105125\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041547\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041888\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://cwiki.apache.org/confluence/display/WW/S2-057\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/hook-s3c/CVE-2018-11776-Python-PoC\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Third Party Advisory\"]}, {\"url\": \"https://lgtm.com/blog/apache_struts_CVE-2018-11776\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\"]}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180822-0001/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20181018-0002/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45260/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45262/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45367/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2020.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}]",
      "sourceIdentifier": "security@apache.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2018-11776\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2018-08-22T13:29:00.753\",\"lastModified\":\"2025-10-27T17:38:06.077\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn\u0027t have value and action set and in same time, its upper package have no or wildcard namespace.\"},{\"lang\":\"es\",\"value\":\"Apache Struts, desde la versi\u00f3n 2.3 hasta la 2.3.34 y desde la versi\u00f3n 2.5 hasta la 2.5.16, sufre de una posible ejecuci\u00f3n remota de c\u00f3digo cuando el valor de alwaysSelectFullNamespace es \\\"true\\\" (establecido por el usuario o por un plugin como Convention Plugin). Adem\u00e1s, los resultados se emplean sin ning\u00fan espacio de nombres y, al mismo tiempo, el paquete superior no tiene espacio de nombres o contiene caracteres comod\u00edn. De manera similar a como pasa con los resultados, existe la misma posibilidad al emplear la etiqueta url, que no tiene un valor y acci\u00f3n definidos y, adem\u00e1s, su paquete superior no tiene espacio de nombres o contiene caracteres comod\u00edn.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"cisaExploitAdd\":\"2021-11-03\",\"cisaActionDue\":\"2022-05-03\",\"cisaRequiredAction\":\"Apply updates per vendor instructions.\",\"cisaVulnerabilityName\":\"Apache Struts Remote Code Execution Vulnerability\",\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0.4\",\"versionEndExcluding\":\"2.3.35\",\"matchCriteriaId\":\"688F84A7-B698-4343-9F7B-FD68B2218035\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.5.0\",\"versionEndExcluding\":\"2.5.17\",\"matchCriteriaId\":\"0D66D46C-389B-4C37-9EEE-6301774719FA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*\",\"versionStartIncluding\":\"7.3\",\"matchCriteriaId\":\"BD075607-09B7-493E-8611-66D041FFDA62\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*\",\"versionStartIncluding\":\"9.5\",\"matchCriteriaId\":\"0CB28AF5-5AF0-4475-A7B6-12E1795FFDCB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1BE6C1F-2565-4E97-92AA-16563E5660A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5735E553-9731-4AAC-BCFF-989377F817B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDFB1169-41A0-4A86-8E4F-FDA9730B1E94\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_policy_management:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"12.5.0\",\"matchCriteriaId\":\"0E8AF73E-8AC6-4F65-A6F0-DBB2CC7A613F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.3.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7582B307-3899-4BBB-B868-BC912A4D0109\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D26F3E23-F1A9-45E7-9E5F-0C0A24EE3783\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.4.9.4237\",\"matchCriteriaId\":\"8A94B32D-6B5F-4E42-8345-4F9126A89435\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0.0\",\"versionEndIncluding\":\"4.0.6.5281\",\"matchCriteriaId\":\"EF71D94F-EFC5-4390-A380-AC0E5DB05516\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.0.0\",\"versionEndIncluding\":\"8.0.2.8191\",\"matchCriteriaId\":\"33EFAF19-A639-47AD-9CDC-D174C91F0F00\"}]}]}],\"references\":[{\"url\":\"http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt\",\"source\":\"security@apache.org\",\"tags\":[\"Broken Link\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html\",\"source\":\"security@apache.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html\",\"source\":\"security@apache.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/105125\",\"source\":\"security@apache.org\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041547\",\"source\":\"security@apache.org\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041888\",\"source\":\"security@apache.org\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://cwiki.apache.org/confluence/display/WW/S2-057\",\"source\":\"security@apache.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/hook-s3c/CVE-2018-11776-Python-PoC\",\"source\":\"security@apache.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://lgtm.com/blog/apache_struts_CVE-2018-11776\",\"source\":\"security@apache.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E\",\"source\":\"security@apache.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20180822-0001/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20181018-0002/\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.exploit-db.com/exploits/45260/\",\"source\":\"security@apache.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.exploit-db.com/exploits/45262/\",\"source\":\"security@apache.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.exploit-db.com/exploits/45367/\",\"source\":\"security@apache.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2020.html\",\"source\":\"security@apache.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\",\"source\":\"security@apache.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/105125\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041547\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1041888\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://cwiki.apache.org/confluence/display/WW/S2-057\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/hook-s3c/CVE-2018-11776-Python-PoC\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://lgtm.com/blog/apache_struts_CVE-2018-11776\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20180822-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20181018-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.exploit-db.com/exploits/45260/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.exploit-db.com/exploits/45262/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.exploit-db.com/exploits/45367/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-11776\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://www.securitytracker.com/id/1041888\", \"name\": \"1041888\", \"tags\": [\"vdb-entry\", \"x_transferred\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45367/\", \"name\": \"45367\", \"tags\": [\"exploit\", \"x_transferred\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45262/\", \"name\": \"45262\", \"tags\": [\"exploit\", \"x_transferred\"]}, {\"url\": \"http://www.securityfocus.com/bid/105125\", \"name\": \"105125\", \"tags\": [\"vdb-entry\", \"x_transferred\"]}, {\"url\": \"http://www.securitytracker.com/id/1041547\", \"name\": \"1041547\", \"tags\": [\"vdb-entry\", \"x_transferred\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45260/\", \"name\": \"45260\", \"tags\": [\"exploit\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E\", \"name\": \"[announce] 20200131 Apache Software Foundation Security Report: 2019\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2020.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20181018-0002/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://cwiki.apache.org/confluence/display/WW/S2-057\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lgtm.com/blog/apache_struts_CVE-2018-11776\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180822-0001/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/hook-s3c/CVE-2018-11776-Python-PoC\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-05T08:17:09.231Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2018-11776\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-02-06T21:01:33.678556Z\"}}}, {\"other\": {\"type\": \"kev\", \"content\": {\"dateAdded\": \"2021-11-03\", \"reference\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-11776\"}}}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2021-11-03T00:00:00+00:00\", \"value\": \"CVE-2018-11776 added to CISA KEV\"}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-11776\", \"tags\": [\"government-resource\"]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"description\": \"CWE-noinfo Not enough information\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-02-06T21:00:58.746Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"Apache Software Foundation\", \"product\": \"Apache Struts\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.3 to 2.3.34\"}, {\"status\": \"affected\", \"version\": \"2.5 to 2.5.16\"}]}], \"datePublic\": \"2018-08-22T00:00:00.000Z\", \"references\": [{\"url\": \"http://www.securitytracker.com/id/1041888\", \"name\": \"1041888\", \"tags\": [\"vdb-entry\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45367/\", \"name\": \"45367\", \"tags\": [\"exploit\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45262/\", \"name\": \"45262\", \"tags\": [\"exploit\"]}, {\"url\": \"http://www.securityfocus.com/bid/105125\", \"name\": \"105125\", \"tags\": [\"vdb-entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1041547\", \"name\": \"1041547\", \"tags\": [\"vdb-entry\"]}, {\"url\": \"https://www.exploit-db.com/exploits/45260/\", \"name\": \"45260\", \"tags\": [\"exploit\"]}, {\"url\": \"https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E\", \"name\": \"[announce] 20200131 Apache Software Foundation Security Report: 2019\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2020.html\"}, {\"url\": \"https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20181018-0002/\"}, {\"url\": \"https://cwiki.apache.org/confluence/display/WW/S2-057\"}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012\"}, {\"url\": \"http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html\"}, {\"url\": \"https://lgtm.com/blog/apache_struts_CVE-2018-11776\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20180822-0001/\"}, {\"url\": \"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt\"}, {\"url\": \"https://github.com/hook-s3c/CVE-2018-11776-Python-PoC\"}, {\"url\": \"http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn\u0027t have value and action set and in same time, its upper package have no or wildcard namespace.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"Remote Code Execution\"}]}], \"providerMetadata\": {\"orgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"shortName\": \"apache\", \"dateUpdated\": \"2023-06-12T00:00:00.000Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2018-11776\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-21T23:45:48.386Z\", \"dateReserved\": \"2018-06-05T00:00:00.000Z\", \"assignerOrgId\": \"f0158376-9dc2-43b6-827c-5f631a4d8d09\", \"datePublished\": \"2018-08-22T13:00:00.000Z\", \"assignerShortName\": \"apache\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CISCO-SA-20180823-APACHE-STRUTS

Vulnerability from csaf_cisco - Published: 2018-08-23 20:00 - Updated: 2018-09-17 18:52

Summary

Apache Struts Remote Code Execution Vulnerability Affecting Cisco Products: August 2018

Notes

Summary

A vulnerability in Apache Struts could allow an unauthenticated, remote attacker to execute arbitrary code on a targeted system. The vulnerability exists because the affected software insufficiently validates user-supplied input, allowing the use of results with no namespace value and the use of url tags with no value or action. In cases where upper actions or configurations also have no namespace or a wildcard namespace, an attacker could exploit this vulnerability by sending a request that submits malicious input to the affected application for processing. If successful, the attacker could execute arbitrary code in the security context of the affected application on the targeted system. The following Snort rules can be used to detect possible exploitation of this vulnerability: Snort SID 29639, 39190, 39191, and 47634 This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts"]

Affected Products

The Vulnerable Products ["#vulnerable"] section includes Cisco bug IDs for each affected product or service. The bugs are accessible through the Cisco Bug Search Tool ["https://bst.cloudapps.cisco.com/bugsearch/bug/BUGID"] and contain additional platform-specific information, including workarounds (if available) and fixed software releases. Any product or service not listed in the Vulnerable Products ["#vulnerable"] section of this advisory is to be considered not vulnerable.

Vulnerable Products

Vulnerable products marked with an asterisk (*) contain an affected Struts library, but due to how the library is used within the product, these products are not vulnerable to any of the exploitation vectors known to Cisco at the time of publication. The following table lists Cisco products that are affected by the vulnerability that is described in this advisory: Product Cisco Bug ID Fixed Release Availability Collaboration and Social Media Cisco SocialMiner * CSCvk78903 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78903"] Patch available 11-Sept-2018 Endpoint Clients and Client Software Cisco Prime Service Catalog * CSCvm13989 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13989"] Network and Content Security Devices Cisco Identity Services Engine (ISE) CSCvm14030 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14030"] Patch file available 31-Aug-2018 Voice and Unified Communications Devices Cisco Emergency Responder * CSCvm14044 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14044"] 1151es (21-Sep-2018) Standalone COP (21-Sep-2018) Cisco Finesse * CSCvk78905 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78905"] Patch file available 7-Sept-2018. Cisco Hosted Collaboration Solution for Contact Center * CSCvm14052 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14052"] Patch file available 12-Sep-2018 Cisco MediaSense * CSCvk78906 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78906"] Patch file available 12-Sep-2018 Cisco Unified Communications Manager * CSCvm14042 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14042"] 1151es and 1201es (14-Sep-2018) Standalone COP (20-Sep-2018) Cisco Unified Communications Manager IM & Presence Service (formerly CUPS) * CSCvm14049 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14049"] 1151es and 1201es (21-Sep-2018) Standalone COP (20-Sep-2018) Cisco Unified Contact Center Enterprise * CSCvm13986 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13986"] Patch file available 12-Sept-2018 Cisco Unified Contact Center Enterprise - Live Data server * CSCvk78902 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78902"] Patch file available 7-Sept-2018 Cisco Unified Contact Center Express * CSCvm21744 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm21744"] Patch file available 12-Sep-2018 Cisco Unified Intelligence Center * CSCvm13984 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13984"] Patch file available 12-Sep-2018 Cisco Unified Intelligent Contact Management Enterprise * CSCvm13986 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13986"] Patch file available 12-Sept-2018 Cisco Unified SIP Proxy Software * CSCvm13980 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13980"] 918es (28-Sep-2018) Cisco Unified Survivable Remote Site Telephony Manager * CSCvm13979 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13979"] Patch file available 12-Sep-2018 Cisco Unity Connection * CSCvm14043 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14043"] 1151es and 1201su (18-Sep-2018) Standalone COP (21-Sep-2018) Cisco Virtualized Voice Browser * CSCvm14056 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14056"] Patch file available 12-Sep-2018 Video, Streaming, TelePresence, and Transcoding Devices Cisco Video Distribution Suite for Internet Streaming (VDS-IS) * CSCvm14027 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14027"] 2.3.35 (15-Sept-2018) Cisco Cloud Hosted Services Cisco Network Performance Analysis CSCvm14040 ["https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14040"]

Products Confirmed Not Vulnerable

Only products and services listed in the Vulnerable Products ["#vulnerable"] section of this advisory are known to be affected by this vulnerability. Cisco has confirmed that this vulnerability does not affect the following products and services. All members of the product families in the following list are not considered to be affected by this vulnerability unless they are explicitly listed in the preceding Vulnerable Products ["#vulnerable"] section: Cable Modems Cisco 3G Femtocell Wireless Network Application, Service, and Acceleration Cisco Data Center Network Manager Network and Content Security Devices Cisco Secure Access Control System (ACS) Network Management and Provisioning Cisco MXE 3500 Series Media Experience Engines Cisco Prime Access Registrar Cisco Prime Central for Service Providers Cisco Prime Collaboration Assurance Cisco Prime Collaboration Provisioning Cisco Prime Infrastructure Cisco Prime LAN Management Solution - Solaris Cisco Prime License Manager Cisco Prime Network Registrar IP Address Manager (IPAM) Cisco Prime Network Cisco Prime Order Management Cisco Prime Provisioning Cisco Security Manager Cisco Smart Net Total Care - Local Collector appliance Routing and Switching - Enterprise and Service Provider Cisco Broadband Access Center for Telco and Wireless Voice and Unified Communications Devices Cisco Enterprise Chat and Email Cisco Hosted Collaboration Mediation Fulfillment Cisco Unified Customer Voice Portal Cisco Unified E-Mail Interaction Manager Cisco Unified Web Interaction Manager Cisco Unity Express Video, Streaming, TelePresence, and Transcoding Devices Cisco Enterprise Content Delivery System (ECDS) Cisco Expressway Series Cisco TelePresence Video Communication Server (VCS) Cisco Cloud Hosted Services Cisco Business Video Services Automation Software Cisco Cloud Web Security Cisco Deployment Automation Tool Cisco Network Device Security Assessment Service Cisco Services Provisioning Platform Cisco Smart Net Total Care - Contracts Information System Process Controller Cisco Smart Net Total Care Cisco Unified Service Delivery Platform Cisco Webex Meeting Center - Windows Cisco Webex Meeting Center Cisco Webex Network-Based Recording (NBR) Management Cisco Webex Teams (formerly Cisco Spark) Cloud and Managed Services Program (CMSP)

Workarounds

Any workarounds for a specific Cisco product or service will be documented in product-specific or service-specific Cisco bugs, which are identified in the Vulnerable Products ["#vulnerable"] section of this advisory.

Fixed Software

For information about fixed software releases, consult the Cisco bugs identified in the Vulnerable Products ["#vulnerable"] section of this advisory. Questions concerning the Cisco Webex environment can be directed to the Cisco Technical Assistance Center (TAC). When considering software upgrades, customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories and Alerts page ["https://www.cisco.com/go/psirt"], to determine exposure and a complete upgrade solution. In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco TAC or their contracted maintenance providers.

Vulnerability Policy

To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.

Exploitation and Public Announcements

The Cisco Product Security Incident Response Team (PSIRT) is aware of attempted exploitation of this vulnerability.

Source

On August 22, 2018, the Apache Software Foundation publicly disclosed this vulnerability in a security bulletin at the following link: https://cwiki.apache.org/confluence/display/WW/S2-057 ["https://cwiki.apache.org/confluence/display/WW/S2-057"]

Legal Disclaimer

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME. A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "summary": "On August 22, 2018, the Apache Software Foundation publicly disclosed this vulnerability in a security bulletin at the following link: https://cwiki.apache.org/confluence/display/WW/S2-057 [\"https://cwiki.apache.org/confluence/display/WW/S2-057\"]"
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "notes": [
      {
        "category": "summary",
        "text": "A vulnerability in Apache Struts could allow an unauthenticated, remote attacker to execute arbitrary code on a targeted system.\r\n\r\nThe vulnerability exists because the affected software insufficiently validates user-supplied input, allowing the use of results with no namespace value and the use of url tags with no value or action. In cases where upper actions or configurations also have no namespace or a wildcard namespace, an attacker could exploit this vulnerability by sending a request that submits malicious input to the affected application for processing. If successful, the attacker could execute arbitrary code in the security context of the affected application on the targeted system.\r\nThe following  Snort rules can be used to detect possible exploitation of this  vulnerability: Snort SID 29639, 39190, 39191, and 47634\r\n\r\nThis advisory is available at the following link:\r\nhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts [\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts\"]",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "The Vulnerable Products [\"#vulnerable\"] section includes Cisco bug IDs for each affected product or service. The bugs are accessible through the Cisco Bug Search Tool [\"https://bst.cloudapps.cisco.com/bugsearch/bug/BUGID\"] and contain additional platform-specific information, including workarounds (if available) and fixed software releases.\r\n\r\nAny product or service not listed in the Vulnerable Products [\"#vulnerable\"] section of this advisory is to be considered not vulnerable.",
        "title": "Affected Products"
      },
      {
        "category": "general",
        "text": "Vulnerable products marked with an asterisk (*) contain an affected Struts library, but due to how the library is used within the product, these products are not vulnerable to any of the exploitation vectors known to Cisco at the time of publication.\r\n\r\nThe following table lists Cisco products that are affected by the vulnerability that is described in this advisory:\r\n                                Product              Cisco Bug ID              Fixed Release Availability                                  Collaboration and Social Media                                  Cisco SocialMiner *              CSCvk78903 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78903\"]              Patch available 11-Sept-2018                                  Endpoint Clients and Client Software                                  Cisco Prime Service Catalog *              CSCvm13989 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13989\"]                                                Network and Content Security Devices                                  Cisco Identity Services Engine (ISE)              CSCvm14030 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14030\"]              Patch file available 31-Aug-2018                                  Voice and Unified Communications Devices                                  Cisco Emergency Responder *              CSCvm14044 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14044\"]              1151es (21-Sep-2018)\r\nStandalone COP (21-Sep-2018)                                  Cisco Finesse *              CSCvk78905 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78905\"]              Patch file available 7-Sept-2018.                                  Cisco Hosted Collaboration Solution for Contact Center *              CSCvm14052 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14052\"]              Patch file available 12-Sep-2018                                  Cisco MediaSense *              CSCvk78906 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78906\"]              Patch file available 12-Sep-2018                                  Cisco Unified Communications Manager *              CSCvm14042 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14042\"]              1151es and 1201es (14-Sep-2018)\r\nStandalone COP (20-Sep-2018)                                  Cisco Unified Communications Manager IM \u0026 Presence Service (formerly CUPS) *              CSCvm14049 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14049\"]              1151es and 1201es (21-Sep-2018)\r\nStandalone COP (20-Sep-2018)                                  Cisco Unified Contact Center Enterprise *              CSCvm13986 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13986\"]              Patch file available 12-Sept-2018                                  Cisco Unified Contact Center Enterprise - Live Data server *              CSCvk78902 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78902\"]              Patch file available 7-Sept-2018                                  Cisco Unified Contact Center Express *              CSCvm21744 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm21744\"]              Patch file available 12-Sep-2018                                  Cisco Unified Intelligence Center *              CSCvm13984 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13984\"]              Patch file available 12-Sep-2018                                  Cisco Unified Intelligent Contact Management Enterprise *              CSCvm13986 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13986\"]              Patch file available 12-Sept-2018                                  Cisco Unified SIP Proxy Software *              CSCvm13980 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13980\"]              918es (28-Sep-2018)                                  Cisco Unified Survivable Remote Site Telephony Manager *              CSCvm13979 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13979\"]              Patch file available 12-Sep-2018                                  Cisco Unity Connection *              CSCvm14043 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14043\"]              1151es and 1201su  (18-Sep-2018)\r\nStandalone COP (21-Sep-2018)                                  Cisco Virtualized Voice Browser *              CSCvm14056 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14056\"]              Patch file available 12-Sep-2018                                  Video, Streaming, TelePresence, and Transcoding Devices                                  Cisco Video Distribution Suite for Internet Streaming (VDS-IS) *              CSCvm14027 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14027\"]              2.3.35 (15-Sept-2018)                                  Cisco Cloud Hosted Services                                  Cisco Network Performance Analysis              CSCvm14040 [\"https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14040\"]",
        "title": "Vulnerable Products"
      },
      {
        "category": "general",
        "text": "Only products and services listed in the Vulnerable Products [\"#vulnerable\"] section of this advisory are known to be affected by this vulnerability.\r\n\r\nCisco has confirmed that this vulnerability does not affect the following products and services. All members of the product families in the following list are not considered to be affected by this vulnerability unless they are explicitly listed in the preceding Vulnerable Products [\"#vulnerable\"] section:\r\n  Cable Modems\r\n\r\nCisco 3G Femtocell Wireless\r\nNetwork Application, Service, and Acceleration\r\n\r\nCisco Data Center Network Manager\r\nNetwork and Content Security Devices\r\n\r\nCisco Secure Access Control System (ACS)\r\nNetwork Management and Provisioning\r\n\r\nCisco MXE 3500 Series Media Experience Engines\r\nCisco Prime Access Registrar\r\nCisco Prime Central for Service Providers\r\nCisco Prime Collaboration Assurance\r\nCisco Prime Collaboration Provisioning\r\nCisco Prime Infrastructure\r\nCisco Prime LAN Management Solution - Solaris\r\nCisco Prime License Manager\r\nCisco Prime Network Registrar IP Address Manager (IPAM)\r\nCisco Prime Network\r\nCisco Prime Order Management\r\nCisco Prime Provisioning\r\nCisco Security Manager\r\nCisco Smart Net Total Care - Local Collector appliance\r\nRouting and Switching - Enterprise and Service Provider\r\n\r\nCisco Broadband Access Center for Telco and Wireless\r\nVoice and Unified Communications Devices\r\n\r\nCisco Enterprise Chat and Email\r\nCisco Hosted Collaboration Mediation Fulfillment\r\nCisco Unified Customer Voice Portal\r\nCisco Unified E-Mail Interaction Manager\r\nCisco Unified Web Interaction Manager\r\nCisco Unity Express\r\nVideo, Streaming, TelePresence, and Transcoding Devices\r\n\r\nCisco Enterprise Content Delivery System (ECDS)\r\nCisco Expressway Series\r\nCisco TelePresence Video Communication Server (VCS)\r\nCisco Cloud Hosted Services\r\n\r\nCisco Business Video Services Automation Software\r\nCisco Cloud Web Security\r\nCisco Deployment Automation Tool\r\nCisco Network Device Security Assessment Service\r\nCisco Services Provisioning Platform\r\nCisco Smart Net Total Care - Contracts Information System Process Controller\r\nCisco Smart Net Total Care\r\nCisco Unified Service Delivery Platform\r\nCisco Webex Meeting Center - Windows\r\nCisco Webex Meeting Center\r\nCisco Webex Network-Based Recording (NBR) Management\r\nCisco Webex Teams (formerly Cisco Spark)\r\nCloud and Managed Services Program (CMSP)",
        "title": "Products Confirmed Not Vulnerable"
      },
      {
        "category": "general",
        "text": "Any workarounds for a specific Cisco product or service will be documented in product-specific or service-specific Cisco bugs, which are identified in the Vulnerable Products [\"#vulnerable\"] section of this advisory.",
        "title": "Workarounds"
      },
      {
        "category": "general",
        "text": "For information about fixed software releases, consult the Cisco bugs identified in the Vulnerable Products [\"#vulnerable\"] section of this advisory. Questions concerning the Cisco Webex environment can be directed to the Cisco Technical Assistance Center (TAC).\r\n\r\nWhen considering software upgrades, customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories and Alerts page [\"https://www.cisco.com/go/psirt\"], to determine exposure and a complete upgrade solution.\r\n\r\nIn all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco TAC or their contracted maintenance providers.",
        "title": "Fixed Software"
      },
      {
        "category": "general",
        "text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
        "title": "Vulnerability Policy"
      },
      {
        "category": "general",
        "text": "The Cisco Product Security Incident Response Team (PSIRT) is aware of attempted exploitation of this vulnerability.",
        "title": "Exploitation and Public Announcements"
      },
      {
        "category": "general",
        "text": "On August 22, 2018, the Apache Software Foundation publicly disclosed this vulnerability in a security bulletin at the following link: https://cwiki.apache.org/confluence/display/WW/S2-057 [\"https://cwiki.apache.org/confluence/display/WW/S2-057\"]",
        "title": "Source"
      },
      {
        "category": "legal_disclaimer",
        "text": "THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nA standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.",
        "title": "Legal Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "Emergency Support:\r\n+1 877 228 7302 (toll-free within North America)\r\n+1 408 525 6532 (International direct-dial)\r\nNon-emergency Support:\r\nEmail: psirt@cisco.com\r\nSupport requests that are received via e-mail are typically acknowledged within 48 hours.",
      "issuing_authority": "Cisco product security incident response is the responsibility of the Cisco Product Security Incident Response Team (PSIRT). The Cisco PSIRT is a dedicated, global team that manages the receipt, investigation, and public reporting of security vulnerability information that is related to Cisco products and networks. The on-call Cisco PSIRT works 24x7 with Cisco customers, independent security researchers, consultants, industry organizations, and other vendors to identify possible security issues with Cisco products and networks.\r\nMore information can be found in Cisco Security Vulnerability Policy available at https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html",
      "name": "Cisco",
      "namespace": "https://wwww.cisco.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "Apache Struts Remote Code Execution Vulnerability Affecting Cisco Products: August 2018",
        "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts"
      },
      {
        "category": "external",
        "summary": "Cisco Security Vulnerability Policy",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
      },
      {
        "category": "external",
        "summary": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts",
        "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts"
      },
      {
        "category": "external",
        "summary": "Cisco Bug Search Tool",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/BUGID"
      },
      {
        "category": "external",
        "summary": "CSCvk78903",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78903"
      },
      {
        "category": "external",
        "summary": "CSCvm13989",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13989"
      },
      {
        "category": "external",
        "summary": "CSCvm14030",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14030"
      },
      {
        "category": "external",
        "summary": "CSCvm14044",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14044"
      },
      {
        "category": "external",
        "summary": "CSCvk78905",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78905"
      },
      {
        "category": "external",
        "summary": "CSCvm14052",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14052"
      },
      {
        "category": "external",
        "summary": "CSCvk78906",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78906"
      },
      {
        "category": "external",
        "summary": "CSCvm14042",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14042"
      },
      {
        "category": "external",
        "summary": "CSCvm14049",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14049"
      },
      {
        "category": "external",
        "summary": "CSCvm13986",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13986"
      },
      {
        "category": "external",
        "summary": "CSCvk78902",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78902"
      },
      {
        "category": "external",
        "summary": "CSCvm21744",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm21744"
      },
      {
        "category": "external",
        "summary": "CSCvm13984",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13984"
      },
      {
        "category": "external",
        "summary": "CSCvm13986",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13986"
      },
      {
        "category": "external",
        "summary": "CSCvm13980",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13980"
      },
      {
        "category": "external",
        "summary": "CSCvm13979",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13979"
      },
      {
        "category": "external",
        "summary": "CSCvm14043",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14043"
      },
      {
        "category": "external",
        "summary": "CSCvm14056",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14056"
      },
      {
        "category": "external",
        "summary": "CSCvm14027",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14027"
      },
      {
        "category": "external",
        "summary": "CSCvm14040",
        "url": "https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14040"
      },
      {
        "category": "external",
        "summary": "Cisco Security Advisories and Alerts page",
        "url": "https://www.cisco.com/go/psirt"
      },
      {
        "category": "external",
        "summary": "Security Vulnerability Policy",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
      },
      {
        "category": "external",
        "summary": "https://cwiki.apache.org/confluence/display/WW/S2-057",
        "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
      }
    ],
    "title": "Apache Struts Remote Code Execution Vulnerability Affecting Cisco Products: August 2018",
    "tracking": {
      "current_release_date": "2018-09-17T18:52:00+00:00",
      "generator": {
        "date": "2022-09-03T03:40:59+00:00",
        "engine": {
          "name": "TVCE"
        }
      },
      "id": "cisco-sa-20180823-apache-struts",
      "initial_release_date": "2018-08-23T20:00:00+00:00",
      "revision_history": [
        {
          "date": "2018-08-23T19:59:24+00:00",
          "number": "1.0.0",
          "summary": "Initial public release."
        },
        {
          "date": "2018-08-24T18:48:43+00:00",
          "number": "1.1.0",
          "summary": "Added Snort SIDs. Updated the lists of products under investigation, vulnerable products, and products confirmed not vulnerable."
        },
        {
          "date": "2018-08-28T19:24:34+00:00",
          "number": "1.2.0",
          "summary": "Updated the lists of products under investigation, vulnerable products, and products confirmed not vulnerable."
        },
        {
          "date": "2018-08-28T22:00:08+00:00",
          "number": "1.3.0",
          "summary": "Updated the lists of products under investigation, vulnerable products, and products confirmed not vulnerable."
        },
        {
          "date": "2018-08-29T20:51:13+00:00",
          "number": "1.4.0",
          "summary": "Updated the lists of products under investigation, vulnerable products, and products confirmed not vulnerable, updated the awareness of exploitation attempts."
        },
        {
          "date": "2018-08-30T18:31:56+00:00",
          "number": "1.5.0",
          "summary": "Updated the lists of products under investigation, vulnerable products, and products confirmed not vulnerable."
        },
        {
          "date": "2018-08-31T15:43:54+00:00",
          "number": "1.6.0",
          "summary": "Updated the lists of products under investigation, vulnerable products, and products confirmed not vulnerable."
        },
        {
          "date": "2018-09-04T16:05:47+00:00",
          "number": "1.7.0",
          "summary": "Updated the lists of products under investigation, vulnerable products, and products confirmed not vulnerable."
        },
        {
          "date": "2018-09-05T16:11:33+00:00",
          "number": "1.8.0",
          "summary": "Updated the lists of vulnerable products and products confirmed not vulnerable. Removed references to ongoing investigation."
        },
        {
          "date": "2018-09-06T18:05:26+00:00",
          "number": "1.9.0",
          "summary": "Updated the software availability information for vulnerable products."
        },
        {
          "date": "2018-09-10T16:27:12+00:00",
          "number": "1.10.0",
          "summary": "Updated the list of vulnerable products; in the previous version the asterisk was inadvertently omitted."
        },
        {
          "date": "2018-09-13T14:38:05+00:00",
          "number": "1.11.0",
          "summary": "Updated the software availability information for vulnerable products."
        },
        {
          "date": "2018-09-17T18:52:00+00:00",
          "number": "1.12.0",
          "summary": "Updated the software availability information for vulnerable products."
        }
      ],
      "status": "final",
      "version": "1.12.0"
    }
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-11776",
      "notes": [
        {
          "category": "general",
          "text": "No additional information for this vulneraiblity is currently avaialbe.",
          "title": "No Notes"
        }
      ],
      "release_date": "2018-08-22T16:23:00+00:00",
      "remediations": [
        {
          "category": "none_available",
          "details": "No remediation is available at this time."
        }
      ],
      "title": "Apache Struts Namespace Remote Code Execution Vulnerability"
    }
  ]
}

CERTFR-2018-AVI-498

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans Oracle MySQL. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à l'intégrité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Oracle	MySQL	MySQL Server versions 8.0.12 et antérieures
Oracle	MySQL	MySQL Server versions 5.5.61 et antérieures
Oracle	MySQL	MySQL Enterprise Monitor versions 8.0.12 et antérieures
Oracle	MySQL	MySQL Server versions 5.6.41 et antérieures
Oracle	MySQL	MySQL Server versions 5.7.23 et antérieures
Oracle	MySQL	MySQL Enterprise Monitor versions 3.4.9.4237 et antérieures
Oracle	MySQL	MySQL Enterprise Monitor versions 8.0.2.8191 et antérieures
Oracle	MySQL	MySQL Enterprise Monitor versions 4.0.6.5281 et antérieures

References

Title

Publication Time

Tags

Bulletin de sécurité Oracle cpuoct2018verbose du 16 octobre 2018	None	vendor-advisory
Bulletin de sécurité Oracle du 16 octobre 2018	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "MySQL Server versions 8.0.12 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Server versions 5.5.61 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Enterprise Monitor versions 8.0.12 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Server versions 5.6.41 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Server versions 5.7.23 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Enterprise Monitor versions 3.4.9.4237 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Enterprise Monitor versions 8.0.2.8191 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Enterprise Monitor versions 4.0.6.5281 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2018-3187",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3187"
    },
    {
      "name": "CVE-2018-3279",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3279"
    },
    {
      "name": "CVE-2018-3283",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3283"
    },
    {
      "name": "CVE-2018-3162",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3162"
    },
    {
      "name": "CVE-2018-3174",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3174"
    },
    {
      "name": "CVE-2018-3284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3284"
    },
    {
      "name": "CVE-2018-3282",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3282"
    },
    {
      "name": "CVE-2018-3155",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3155"
    },
    {
      "name": "CVE-2018-3170",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3170"
    },
    {
      "name": "CVE-2018-3258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3258"
    },
    {
      "name": "CVE-2018-3144",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3144"
    },
    {
      "name": "CVE-2018-3161",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3161"
    },
    {
      "name": "CVE-2018-3251",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3251"
    },
    {
      "name": "CVE-2018-3173",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3173"
    },
    {
      "name": "CVE-2018-3186",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3186"
    },
    {
      "name": "CVE-2016-9843",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9843"
    },
    {
      "name": "CVE-2018-3137",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3137"
    },
    {
      "name": "CVE-2018-3286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3286"
    },
    {
      "name": "CVE-2018-3247",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3247"
    },
    {
      "name": "CVE-2018-3185",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3185"
    },
    {
      "name": "CVE-2018-3133",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3133"
    },
    {
      "name": "CVE-2018-3203",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3203"
    },
    {
      "name": "CVE-2018-3156",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3156"
    },
    {
      "name": "CVE-2018-3182",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3182"
    },
    {
      "name": "CVE-2018-3145",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3145"
    },
    {
      "name": "CVE-2018-11776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11776"
    },
    {
      "name": "CVE-2018-8014",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-8014"
    },
    {
      "name": "CVE-2018-3278",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3278"
    },
    {
      "name": "CVE-2018-3276",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3276"
    },
    {
      "name": "CVE-2018-3285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3285"
    },
    {
      "name": "CVE-2018-3212",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3212"
    },
    {
      "name": "CVE-2018-3143",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3143"
    },
    {
      "name": "CVE-2018-3171",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3171"
    },
    {
      "name": "CVE-2018-1258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1258"
    },
    {
      "name": "CVE-2018-3195",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3195"
    },
    {
      "name": "CVE-2018-3277",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3277"
    },
    {
      "name": "CVE-2018-3200",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3200"
    },
    {
      "name": "CVE-2018-3280",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3280"
    }
  ],
  "links": [],
  "reference": "CERTFR-2018-AVI-498",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2018-10-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Oracle MySQL. Elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9\ndes donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Oracle MySQL",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Oracle cpuoct2018verbose du 16 octobre 2018",
      "url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2018verbose-5170927.html#MSQL"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Oracle du 16 octobre 2018",
      "url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
    }
  ]
}

CERTFR-2018-AVI-544

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits IBM . Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
IBM	N/A	IBM Network Performance Insight versions 1.2.1, 1.2.2, 1.2.3
IBM	N/A	IBM Installation Manager et IBM Packaging Utility versions antérieures à 1.8.9.2
IBM	N/A	IBM Content Collector for Email versions 4.0.1.x sans le dernier correctif de sécurité
IBM	N/A	IBM Content Collector for SharePoint versions 4.0.1.x sans le dernier correctif de sécurité
IBM	WebSphere	IBM WebSphere Application Server versions 9.0.x antérieures à 9.0.0.9
IBM	N/A	IBM Content Collector for File Systems versions 4.0.1.x sans le dernier correctif de sécurité
IBM	N/A	IBM Content Collector for IBM Connections versions 4.0.1.x sans le dernier correctif de sécurité
IBM	WebSphere	IBM WebSphere Application Server versions 8.0.x sans le dernier correctif de sécurité
IBM	WebSphere	IBM WebSphere Application Server versions 8.5.x antérieures à 8.5.5.14
IBM	Tivoli	IBM Tivoli System Automation for Multiplatforms versions 4.1.x sans le dernier correctif de sécurité

References

Title

Publication Time

Tags

Bulletin de sécurité IBM 10716857 du 13 novembre 2018	None	vendor-advisory
Bulletin de sécurité IBM 10735325 du 13 novembre 2018	None	vendor-advisory
Bulletin de sécurité IBM 10738729 du 13 novembre 2018	None	vendor-advisory
Bulletin de sécurité IBM 10739173 du 12 novembre 2018	None	vendor-advisory
Bulletin de sécurité IBM 10739183 du 12 novembre 2018	None	vendor-advisory
Bulletin de sécurité IBM 10730391 du 12 novembre 2018	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "IBM Network Performance Insight versions 1.2.1, 1.2.2, 1.2.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Installation Manager et IBM Packaging Utility versions ant\u00e9rieures \u00e0 1.8.9.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Content Collector for Email versions 4.0.1.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Content Collector for SharePoint versions 4.0.1.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM WebSphere Application Server versions 9.0.x ant\u00e9rieures \u00e0 9.0.0.9",
      "product": {
        "name": "WebSphere",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Content Collector for File Systems versions 4.0.1.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Content Collector for IBM Connections versions 4.0.1.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM WebSphere Application Server versions 8.0.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "WebSphere",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM WebSphere Application Server versions 8.5.x ant\u00e9rieures \u00e0 8.5.5.14",
      "product": {
        "name": "WebSphere",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli System Automation for Multiplatforms versions 4.1.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2018-1656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
    },
    {
      "name": "CVE-2018-1643",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1643"
    },
    {
      "name": "CVE-2018-11776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11776"
    },
    {
      "name": "CVE-2018-11771",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11771"
    },
    {
      "name": "CVE-2018-1517",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1517"
    },
    {
      "name": "CVE-2018-12539",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
    }
  ],
  "links": [],
  "reference": "CERTFR-2018-AVI-544",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2018-11-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM .\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10716857 du 13 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10716857"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10735325 du 13 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10735325"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10738729 du 13 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10738729"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10739173 du 12 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10739173"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10739183 du 12 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10739183"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10730391 du 12 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10730391"
    }
  ]
}

CERTFR-2018-AVI-405

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été découverte dans Apache Struts 2 . Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Apache	Struts	Struts versions antérieures à 2.3.35
	Apache	Struts	Struts versions 2.5.x antérieures à 2.5.17

References

Title

Publication Time

Tags

Bulletin de sécurité Apache Struts 2 S2-057 du 22 août 2018

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Struts versions ant\u00e9rieures \u00e0 2.3.35",
      "product": {
        "name": "Struts",
        "vendor": {
          "name": "Apache",
          "scada": false
        }
      }
    },
    {
      "description": "Struts versions 2.5.x ant\u00e9rieures \u00e0 2.5.17",
      "product": {
        "name": "Struts",
        "vendor": {
          "name": "Apache",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2018-11776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11776"
    }
  ],
  "links": [],
  "reference": "CERTFR-2018-AVI-405",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2018-08-23T00:00:00.000000"
    },
    {
      "description": "Modification du titre",
      "revision_date": "2018-08-24T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Apache Struts 2 . Elle permet \u00e0\nun attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Apache Struts 2",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apache Struts 2 S2-057 du 22 ao\u00fbt 2018",
      "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
    }
  ]
}

CERTFR-2018-AVI-544

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
IBM	N/A	IBM Network Performance Insight versions 1.2.1, 1.2.2, 1.2.3
IBM	N/A	IBM Installation Manager et IBM Packaging Utility versions antérieures à 1.8.9.2
IBM	N/A	IBM Content Collector for Email versions 4.0.1.x sans le dernier correctif de sécurité
IBM	N/A	IBM Content Collector for SharePoint versions 4.0.1.x sans le dernier correctif de sécurité
IBM	WebSphere	IBM WebSphere Application Server versions 9.0.x antérieures à 9.0.0.9
IBM	N/A	IBM Content Collector for File Systems versions 4.0.1.x sans le dernier correctif de sécurité
IBM	N/A	IBM Content Collector for IBM Connections versions 4.0.1.x sans le dernier correctif de sécurité
IBM	WebSphere	IBM WebSphere Application Server versions 8.0.x sans le dernier correctif de sécurité
IBM	WebSphere	IBM WebSphere Application Server versions 8.5.x antérieures à 8.5.5.14
IBM	Tivoli	IBM Tivoli System Automation for Multiplatforms versions 4.1.x sans le dernier correctif de sécurité

References

Title

Publication Time

Tags

Bulletin de sécurité IBM 10716857 du 13 novembre 2018	None	vendor-advisory
Bulletin de sécurité IBM 10735325 du 13 novembre 2018	None	vendor-advisory
Bulletin de sécurité IBM 10738729 du 13 novembre 2018	None	vendor-advisory
Bulletin de sécurité IBM 10739173 du 12 novembre 2018	None	vendor-advisory
Bulletin de sécurité IBM 10739183 du 12 novembre 2018	None	vendor-advisory
Bulletin de sécurité IBM 10730391 du 12 novembre 2018	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "IBM Network Performance Insight versions 1.2.1, 1.2.2, 1.2.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Installation Manager et IBM Packaging Utility versions ant\u00e9rieures \u00e0 1.8.9.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Content Collector for Email versions 4.0.1.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Content Collector for SharePoint versions 4.0.1.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM WebSphere Application Server versions 9.0.x ant\u00e9rieures \u00e0 9.0.0.9",
      "product": {
        "name": "WebSphere",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Content Collector for File Systems versions 4.0.1.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Content Collector for IBM Connections versions 4.0.1.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM WebSphere Application Server versions 8.0.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "WebSphere",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM WebSphere Application Server versions 8.5.x ant\u00e9rieures \u00e0 8.5.5.14",
      "product": {
        "name": "WebSphere",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    },
    {
      "description": "IBM Tivoli System Automation for Multiplatforms versions 4.1.x sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "Tivoli",
        "vendor": {
          "name": "IBM",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2018-1656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1656"
    },
    {
      "name": "CVE-2018-1643",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1643"
    },
    {
      "name": "CVE-2018-11776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11776"
    },
    {
      "name": "CVE-2018-11771",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11771"
    },
    {
      "name": "CVE-2018-1517",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1517"
    },
    {
      "name": "CVE-2018-12539",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-12539"
    }
  ],
  "links": [],
  "reference": "CERTFR-2018-AVI-544",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2018-11-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM .\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10716857 du 13 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10716857"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10735325 du 13 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10735325"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10738729 du 13 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10738729"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10739173 du 12 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10739173"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10739183 du 12 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10739183"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 IBM 10730391 du 12 novembre 2018",
      "url": "https://www-01.ibm.com/support/docview.wss?uid=ibm10730391"
    }
  ]
}

CERTFR-2018-AVI-498

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Oracle	MySQL	MySQL Server versions 8.0.12 et antérieures
Oracle	MySQL	MySQL Server versions 5.5.61 et antérieures
Oracle	MySQL	MySQL Enterprise Monitor versions 8.0.12 et antérieures
Oracle	MySQL	MySQL Server versions 5.6.41 et antérieures
Oracle	MySQL	MySQL Server versions 5.7.23 et antérieures
Oracle	MySQL	MySQL Enterprise Monitor versions 3.4.9.4237 et antérieures
Oracle	MySQL	MySQL Enterprise Monitor versions 8.0.2.8191 et antérieures
Oracle	MySQL	MySQL Enterprise Monitor versions 4.0.6.5281 et antérieures

References

Title

Publication Time

Tags

Bulletin de sécurité Oracle cpuoct2018verbose du 16 octobre 2018	None	vendor-advisory
Bulletin de sécurité Oracle du 16 octobre 2018	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "MySQL Server versions 8.0.12 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Server versions 5.5.61 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Enterprise Monitor versions 8.0.12 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Server versions 5.6.41 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Server versions 5.7.23 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Enterprise Monitor versions 3.4.9.4237 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Enterprise Monitor versions 8.0.2.8191 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "MySQL Enterprise Monitor versions 4.0.6.5281 et ant\u00e9rieures",
      "product": {
        "name": "MySQL",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2018-3187",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3187"
    },
    {
      "name": "CVE-2018-3279",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3279"
    },
    {
      "name": "CVE-2018-3283",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3283"
    },
    {
      "name": "CVE-2018-3162",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3162"
    },
    {
      "name": "CVE-2018-3174",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3174"
    },
    {
      "name": "CVE-2018-3284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3284"
    },
    {
      "name": "CVE-2018-3282",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3282"
    },
    {
      "name": "CVE-2018-3155",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3155"
    },
    {
      "name": "CVE-2018-3170",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3170"
    },
    {
      "name": "CVE-2018-3258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3258"
    },
    {
      "name": "CVE-2018-3144",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3144"
    },
    {
      "name": "CVE-2018-3161",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3161"
    },
    {
      "name": "CVE-2018-3251",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3251"
    },
    {
      "name": "CVE-2018-3173",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3173"
    },
    {
      "name": "CVE-2018-3186",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3186"
    },
    {
      "name": "CVE-2016-9843",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9843"
    },
    {
      "name": "CVE-2018-3137",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3137"
    },
    {
      "name": "CVE-2018-3286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3286"
    },
    {
      "name": "CVE-2018-3247",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3247"
    },
    {
      "name": "CVE-2018-3185",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3185"
    },
    {
      "name": "CVE-2018-3133",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3133"
    },
    {
      "name": "CVE-2018-3203",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3203"
    },
    {
      "name": "CVE-2018-3156",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3156"
    },
    {
      "name": "CVE-2018-3182",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3182"
    },
    {
      "name": "CVE-2018-3145",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3145"
    },
    {
      "name": "CVE-2018-11776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11776"
    },
    {
      "name": "CVE-2018-8014",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-8014"
    },
    {
      "name": "CVE-2018-3278",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3278"
    },
    {
      "name": "CVE-2018-3276",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3276"
    },
    {
      "name": "CVE-2018-3285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3285"
    },
    {
      "name": "CVE-2018-3212",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3212"
    },
    {
      "name": "CVE-2018-3143",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3143"
    },
    {
      "name": "CVE-2018-3171",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3171"
    },
    {
      "name": "CVE-2018-1258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1258"
    },
    {
      "name": "CVE-2018-3195",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3195"
    },
    {
      "name": "CVE-2018-3277",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3277"
    },
    {
      "name": "CVE-2018-3200",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3200"
    },
    {
      "name": "CVE-2018-3280",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3280"
    }
  ],
  "links": [],
  "reference": "CERTFR-2018-AVI-498",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2018-10-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Oracle MySQL. Elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9\ndes donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Oracle MySQL",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Oracle cpuoct2018verbose du 16 octobre 2018",
      "url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2018verbose-5170927.html#MSQL"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Oracle du 16 octobre 2018",
      "url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
    }
  ]
}

CERTFR-2018-AVI-405

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été découverte dans Apache Struts 2 . Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Apache	Struts	Struts versions antérieures à 2.3.35
	Apache	Struts	Struts versions 2.5.x antérieures à 2.5.17

References

Title

Publication Time

Tags

Bulletin de sécurité Apache Struts 2 S2-057 du 22 août 2018

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Struts versions ant\u00e9rieures \u00e0 2.3.35",
      "product": {
        "name": "Struts",
        "vendor": {
          "name": "Apache",
          "scada": false
        }
      }
    },
    {
      "description": "Struts versions 2.5.x ant\u00e9rieures \u00e0 2.5.17",
      "product": {
        "name": "Struts",
        "vendor": {
          "name": "Apache",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2018-11776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11776"
    }
  ],
  "links": [],
  "reference": "CERTFR-2018-AVI-405",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2018-08-23T00:00:00.000000"
    },
    {
      "description": "Modification du titre",
      "revision_date": "2018-08-24T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Apache Struts 2 . Elle permet \u00e0\nun attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Apache Struts 2",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apache Struts 2 S2-057 du 22 ao\u00fbt 2018",
      "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
    }
  ]
}

GSD-2018-11776

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2018-11776

Aliases

CVE-2018-11776

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2018-11776",
    "description": "Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn\u0027t have value and action set and in same time, its upper package have no or wildcard namespace.",
    "id": "GSD-2018-11776",
    "references": [
      "https://www.suse.com/security/cve/CVE-2018-11776.html",
      "https://packetstormsecurity.com/files/cve/CVE-2018-11776"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2018-11776"
      ],
      "details": "Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn\u0027t have value and action set and in same time, its upper package have no or wildcard namespace.",
      "id": "GSD-2018-11776",
      "modified": "2023-12-13T01:22:42.752506Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cisa.gov": {
      "cveID": "CVE-2018-11776",
      "dateAdded": "2021-11-03",
      "dueDate": "2022-05-03",
      "product": "Struts",
      "requiredAction": "Apply updates per vendor instructions.",
      "shortDescription": "Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 contain a vulnerability which can allow for remote code execution.",
      "vendorProject": "Apache",
      "vulnerabilityName": "Apache Struts 2.3 to 2.3.34 and 2.5 to 2.5.16 Remote Code Execution Vulnerability"
    },
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@apache.org",
        "DATE_PUBLIC": "2018-08-22T00:00:00",
        "ID": "CVE-2018-11776",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Apache Struts",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "2.3 to 2.3.34"
                        },
                        {
                          "version_value": "2.5 to 2.5.16"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Apache Software Foundation"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn\u0027t have value and action set and in same time, its upper package have no or wildcard namespace."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Remote Code Execution"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "1041888",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1041888"
          },
          {
            "name": "45367",
            "refsource": "EXPLOIT-DB",
            "url": "https://www.exploit-db.com/exploits/45367/"
          },
          {
            "name": "45262",
            "refsource": "EXPLOIT-DB",
            "url": "https://www.exploit-db.com/exploits/45262/"
          },
          {
            "name": "105125",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/105125"
          },
          {
            "name": "1041547",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1041547"
          },
          {
            "name": "45260",
            "refsource": "EXPLOIT-DB",
            "url": "https://www.exploit-db.com/exploits/45260/"
          },
          {
            "name": "[announce] 20200131 Apache Software Foundation Security Report: 2019",
            "refsource": "MLIST",
            "url": "https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c@%3Cannounce.apache.org%3E"
          },
          {
            "name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html",
            "refsource": "CONFIRM",
            "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
          },
          {
            "name": "https://www.oracle.com/security-alerts/cpujul2020.html",
            "refsource": "MISC",
            "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
          },
          {
            "name": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html",
            "refsource": "CONFIRM",
            "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
          },
          {
            "name": "https://security.netapp.com/advisory/ntap-20181018-0002/",
            "refsource": "CONFIRM",
            "url": "https://security.netapp.com/advisory/ntap-20181018-0002/"
          },
          {
            "name": "https://cwiki.apache.org/confluence/display/WW/S2-057",
            "refsource": "CONFIRM",
            "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
          },
          {
            "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012",
            "refsource": "CONFIRM",
            "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012"
          },
          {
            "name": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html",
            "refsource": "CONFIRM",
            "url": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html"
          },
          {
            "name": "https://lgtm.com/blog/apache_struts_CVE-2018-11776",
            "refsource": "MISC",
            "url": "https://lgtm.com/blog/apache_struts_CVE-2018-11776"
          },
          {
            "name": "https://security.netapp.com/advisory/ntap-20180822-0001/",
            "refsource": "CONFIRM",
            "url": "https://security.netapp.com/advisory/ntap-20180822-0001/"
          },
          {
            "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt",
            "refsource": "CONFIRM",
            "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt"
          },
          {
            "name": "https://github.com/hook-s3c/CVE-2018-11776-Python-PoC",
            "refsource": "MISC",
            "url": "https://github.com/hook-s3c/CVE-2018-11776-Python-PoC"
          },
          {
            "name": "http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html",
            "refsource": "MISC",
            "url": "http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html"
          }
        ]
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "[2.3.1,2.3.34],[2.5.0,2.5.16]",
          "affected_versions": "All versions starting from 2.3.1 up to 2.3.34, all versions starting from 2.5.0 up to 2.5.16",
          "credit": "Man Yue Mo from the Semmle Security Research team",
          "cvss_v2": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "cvss_v3": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "cwe_ids": [
            "CWE-1035",
            "CWE-20",
            "CWE-937"
          ],
          "date": "2020-01-31",
          "description": "Apache Struts suffers from RCE when `alwaysSelectFullNamespace` is true (either by user or a plugin like Convention Plugin).",
          "fixed_versions": [
            "2.3.35",
            "2.5.17"
          ],
          "identifier": "CVE-2018-11776",
          "identifiers": [
            "CVE-2018-11776"
          ],
          "not_impacted": "All versions before 2.3.1, all versions after 2.3.34 before 2.5.0, all versions after 2.5.16",
          "package_slug": "maven/org.apache.struts/struts2-core",
          "pubdate": "2018-08-22",
          "solution": "Upgrade to versions 2.3.35, 2.5.17 or above.",
          "title": "Remote Code Execution",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2018-11776",
            "http://www.securityfocus.com/bid/105125",
            "http://www.securitytracker.com/id/1041547",
            "http://www.securitytracker.com/id/1041888",
            "https://cwiki.apache.org/confluence/display/WW/S2-057",
            "https://www.exploit-db.com/exploits/45260/",
            "https://www.exploit-db.com/exploits/45262/",
            "https://www.exploit-db.com/exploits/45367/",
            "https://access.redhat.com/security/cve/CVE-2018-11776",
            "https://struts.apache.org/docs/s2-057.html"
          ],
          "uuid": "10851920-6674-4061-bf61-9ca71fbce9b0"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2.5.16",
                "versionStartIncluding": "2.5.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2.3.34",
                "versionStartIncluding": "2.3.1",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2018-11776"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn\u0027t have value and action set and in same time, its upper package have no or wildcard namespace."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://cwiki.apache.org/confluence/display/WW/S2-057",
              "refsource": "CONFIRM",
              "tags": [
                "Issue Tracking",
                "Third Party Advisory"
              ],
              "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20180822-0001/",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://security.netapp.com/advisory/ntap-20180822-0001/"
            },
            {
              "name": "1041547",
              "refsource": "SECTRACK",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securitytracker.com/id/1041547"
            },
            {
              "name": "105125",
              "refsource": "BID",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/105125"
            },
            {
              "name": "https://lgtm.com/blog/apache_struts_CVE-2018-11776",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Third Party Advisory"
              ],
              "url": "https://lgtm.com/blog/apache_struts_CVE-2018-11776"
            },
            {
              "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt",
              "refsource": "CONFIRM",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt"
            },
            {
              "name": "45262",
              "refsource": "EXPLOIT-DB",
              "tags": [
                "Exploit",
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "https://www.exploit-db.com/exploits/45262/"
            },
            {
              "name": "45260",
              "refsource": "EXPLOIT-DB",
              "tags": [
                "Exploit",
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "https://www.exploit-db.com/exploits/45260/"
            },
            {
              "name": "https://github.com/hook-s3c/CVE-2018-11776-Python-PoC",
              "refsource": "MISC",
              "tags": [
                "Exploit",
                "Third Party Advisory"
              ],
              "url": "https://github.com/hook-s3c/CVE-2018-11776-Python-PoC"
            },
            {
              "name": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html"
            },
            {
              "name": "45367",
              "refsource": "EXPLOIT-DB",
              "tags": [
                "Exploit",
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "https://www.exploit-db.com/exploits/45367/"
            },
            {
              "name": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
            },
            {
              "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012"
            },
            {
              "name": "1041888",
              "refsource": "SECTRACK",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securitytracker.com/id/1041888"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20181018-0002/",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://security.netapp.com/advisory/ntap-20181018-0002/"
            },
            {
              "name": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
            },
            {
              "name": "[announce] 20200131 Apache Software Foundation Security Report: 2019",
              "refsource": "MLIST",
              "tags": [],
              "url": "https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c@%3Cannounce.apache.org%3E"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujul2020.html",
              "refsource": "MISC",
              "tags": [],
              "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
            },
            {
              "name": "http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "exploitabilityScore": 2.2,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2023-06-12T07:15Z",
      "publishedDate": "2018-08-22T13:29Z"
    }
  }
}

CERTFR-2018-ALE-010

Vulnerability from certfr_alerte - Published: - Updated:

Le 22 août 2018, la fondation Apache a publié un correctif de sécurité pour le framework d'application web Struts. Celui-ci concerne la vulnérabilité CVE-2018-11776 permettant d'exécuter du code à distance sans authentification. L'exploitation ne nécessite pas l'installation de modules complémentaires à Struts.

Le 23 et le 24 août plusieurs codes d'exploitation fonctionnels sont apparus en source ouverte. La société Volexity a peu après constaté des tentatives d'exploitation en masse de ces vulnérabilités. En cas de réussite, un mineur de cryptomonnaie est installée par l'attaquant.

Des indicateurs de compromission sont présents dans la publication de la société Veloxity.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Apache	Struts	Branche 2.3 de Struts jusqu'à la version 2.3.34
Apache	Struts	Les versions antérieures sont potentiellement vulnérables mais non soutenues par l'éditeur
Apache	Struts	Branche 2.5 de Struts jusqu'à la version 2.5.16

References

Title

Publication Time

Tags

Bulletin de sécurité STRUTS S2-057 du 22 août 2018	None	vendor-advisory
Avis de vulnérabilité publié par le CERT-FR	-	other
Bulletin de sécurité de la fondation Apache sur la vulnérabilité	-	other
Publication de la société Veloxity relative à l'exploitation de la vulnérabilité CVE-2018-11776 incluant des marqueurs de compromission	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Branche 2.3 de Struts jusqu\u0027\u00e0 la version 2.3.34",
      "product": {
        "name": "Struts",
        "vendor": {
          "name": "Apache",
          "scada": false
        }
      }
    },
    {
      "description": "Les versions ant\u00e9rieures sont potentiellement vuln\u00e9rables mais non soutenues par l\u0027\u00e9diteur",
      "product": {
        "name": "Struts",
        "vendor": {
          "name": "Apache",
          "scada": false
        }
      }
    },
    {
      "description": "Branche 2.5 de Struts jusqu\u0027\u00e0 la version 2.5.16",
      "product": {
        "name": "Struts",
        "vendor": {
          "name": "Apache",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "closed_at": "2018-10-10",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2018-11776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11776"
    }
  ],
  "links": [
    {
      "title": "Avis de vuln\u00e9rabilit\u00e9 publi\u00e9 par le CERT-FR",
      "url": "https://cert.ssi.gouv.fr/avis/CERTFR-2018-AVI-405/"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 de la fondation Apache sur la vuln\u00e9rabilit\u00e9",
      "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
    },
    {
      "title": "Publication de la soci\u00e9t\u00e9 Veloxity relative \u00e0 l\u0027exploitation de la vuln\u00e9rabilit\u00e9 CVE-2018-11776 incluant des marqueurs de compromission",
      "url": "https://www.volexity.com/blog/2018/08/27/active-exploitation-of-new-apache-struts-vulnerability-cve-2018-11776-deploys-cryptocurrency-miner/"
    }
  ],
  "reference": "CERTFR-2018-ALE-010",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2018-08-29T00:00:00.000000"
    },
    {
      "description": "Modification du titre",
      "revision_date": "2018-08-30T00:00:00.000000"
    },
    {
      "description": "Correction d\u0027une erreur dans le titre d\u0027un lien",
      "revision_date": "2018-08-30T00:00:00.000000"
    },
    {
      "description": "Cl\u00f4ture de l\u0027alerte.",
      "revision_date": "2018-10-10T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "Le 22 ao\u00fbt 2018, la fondation Apache a publi\u00e9 un correctif de s\u00e9curit\u00e9\npour le framework d\u0027application web Struts. Celui-ci concerne la\nvuln\u00e9rabilit\u00e9 CVE-2018-11776 permettant d\u0027ex\u00e9cuter du code \u00e0 distance\nsans authentification. L\u0027exploitation ne n\u00e9cessite pas l\u0027installation de\nmodules compl\u00e9mentaires \u00e0 Struts.\n\nLe 23 et le 24 ao\u00fbt plusieurs codes d\u0027exploitation fonctionnels sont\napparus en source ouverte. La soci\u00e9t\u00e9 Volexity a peu apr\u00e8s constat\u00e9 des\ntentatives d\u0027exploitation en masse de ces vuln\u00e9rabilit\u00e9s. En cas de\nr\u00e9ussite, un mineur de cryptomonnaie est install\u00e9e par l\u0027attaquant.\n\nDes indicateurs de compromission sont pr\u00e9sents dans la publication de la\nsoci\u00e9t\u00e9 Veloxity.\n\n\u00a0\n",
  "title": "Vuln\u00e9rabilit\u00e9 activement exploit\u00e9e dans le framework STRUTS 2",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 STRUTS S2-057 du 22 ao\u00fbt 2018",
      "url": null
    }
  ]
}

CERTFR-2018-ALE-010

Vulnerability from certfr_alerte - Published: - Updated:

Des indicateurs de compromission sont présents dans la publication de la société Veloxity.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Apache	Struts	Branche 2.3 de Struts jusqu'à la version 2.3.34
Apache	Struts	Les versions antérieures sont potentiellement vulnérables mais non soutenues par l'éditeur
Apache	Struts	Branche 2.5 de Struts jusqu'à la version 2.5.16

References

Title

Publication Time

Tags

Bulletin de sécurité STRUTS S2-057 du 22 août 2018	None	vendor-advisory
Avis de vulnérabilité publié par le CERT-FR	-	other
Bulletin de sécurité de la fondation Apache sur la vulnérabilité	-	other
Publication de la société Veloxity relative à l'exploitation de la vulnérabilité CVE-2018-11776 incluant des marqueurs de compromission	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Branche 2.3 de Struts jusqu\u0027\u00e0 la version 2.3.34",
      "product": {
        "name": "Struts",
        "vendor": {
          "name": "Apache",
          "scada": false
        }
      }
    },
    {
      "description": "Les versions ant\u00e9rieures sont potentiellement vuln\u00e9rables mais non soutenues par l\u0027\u00e9diteur",
      "product": {
        "name": "Struts",
        "vendor": {
          "name": "Apache",
          "scada": false
        }
      }
    },
    {
      "description": "Branche 2.5 de Struts jusqu\u0027\u00e0 la version 2.5.16",
      "product": {
        "name": "Struts",
        "vendor": {
          "name": "Apache",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "closed_at": "2018-10-10",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2018-11776",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11776"
    }
  ],
  "links": [
    {
      "title": "Avis de vuln\u00e9rabilit\u00e9 publi\u00e9 par le CERT-FR",
      "url": "https://cert.ssi.gouv.fr/avis/CERTFR-2018-AVI-405/"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 de la fondation Apache sur la vuln\u00e9rabilit\u00e9",
      "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
    },
    {
      "title": "Publication de la soci\u00e9t\u00e9 Veloxity relative \u00e0 l\u0027exploitation de la vuln\u00e9rabilit\u00e9 CVE-2018-11776 incluant des marqueurs de compromission",
      "url": "https://www.volexity.com/blog/2018/08/27/active-exploitation-of-new-apache-struts-vulnerability-cve-2018-11776-deploys-cryptocurrency-miner/"
    }
  ],
  "reference": "CERTFR-2018-ALE-010",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2018-08-29T00:00:00.000000"
    },
    {
      "description": "Modification du titre",
      "revision_date": "2018-08-30T00:00:00.000000"
    },
    {
      "description": "Correction d\u0027une erreur dans le titre d\u0027un lien",
      "revision_date": "2018-08-30T00:00:00.000000"
    },
    {
      "description": "Cl\u00f4ture de l\u0027alerte.",
      "revision_date": "2018-10-10T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "Le 22 ao\u00fbt 2018, la fondation Apache a publi\u00e9 un correctif de s\u00e9curit\u00e9\npour le framework d\u0027application web Struts. Celui-ci concerne la\nvuln\u00e9rabilit\u00e9 CVE-2018-11776 permettant d\u0027ex\u00e9cuter du code \u00e0 distance\nsans authentification. L\u0027exploitation ne n\u00e9cessite pas l\u0027installation de\nmodules compl\u00e9mentaires \u00e0 Struts.\n\nLe 23 et le 24 ao\u00fbt plusieurs codes d\u0027exploitation fonctionnels sont\napparus en source ouverte. La soci\u00e9t\u00e9 Volexity a peu apr\u00e8s constat\u00e9 des\ntentatives d\u0027exploitation en masse de ces vuln\u00e9rabilit\u00e9s. En cas de\nr\u00e9ussite, un mineur de cryptomonnaie est install\u00e9e par l\u0027attaquant.\n\nDes indicateurs de compromission sont pr\u00e9sents dans la publication de la\nsoci\u00e9t\u00e9 Veloxity.\n\n\u00a0\n",
  "title": "Vuln\u00e9rabilit\u00e9 activement exploit\u00e9e dans le framework STRUTS 2",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 STRUTS S2-057 du 22 ao\u00fbt 2018",
      "url": null
    }
  ]
}

FKIE_CVE-2018-11776

Vulnerability from fkie_nvd - Published: 2018-08-22 13:29 - Updated: 2025-10-27 17:38

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
security@apache.org	http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html	Third Party Advisory, VDB Entry
security@apache.org	http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt	Broken Link, Mailing List, Third Party Advisory
security@apache.org	http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html	Patch, Third Party Advisory
security@apache.org	http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html	Patch, Third Party Advisory
security@apache.org	http://www.securityfocus.com/bid/105125	Broken Link, Third Party Advisory, VDB Entry
security@apache.org	http://www.securitytracker.com/id/1041547	Broken Link, Third Party Advisory, VDB Entry
security@apache.org	http://www.securitytracker.com/id/1041888	Broken Link, Third Party Advisory, VDB Entry
security@apache.org	https://cwiki.apache.org/confluence/display/WW/S2-057	Issue Tracking, Third Party Advisory
security@apache.org	https://github.com/hook-s3c/CVE-2018-11776-Python-PoC	Exploit, Third Party Advisory
security@apache.org	https://lgtm.com/blog/apache_struts_CVE-2018-11776	Exploit, Third Party Advisory
security@apache.org	https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E	Mailing List
security@apache.org	https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012	Third Party Advisory
security@apache.org	https://security.netapp.com/advisory/ntap-20180822-0001/	Third Party Advisory
security@apache.org	https://security.netapp.com/advisory/ntap-20181018-0002/	Third Party Advisory
security@apache.org	https://www.exploit-db.com/exploits/45260/	Exploit, Third Party Advisory, VDB Entry
security@apache.org	https://www.exploit-db.com/exploits/45262/	Exploit, Third Party Advisory, VDB Entry
security@apache.org	https://www.exploit-db.com/exploits/45367/	Exploit, Third Party Advisory, VDB Entry
security@apache.org	https://www.oracle.com/security-alerts/cpujul2020.html	Third Party Advisory
security@apache.org	https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt	Broken Link, Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/105125	Broken Link, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1041547	Broken Link, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1041888	Broken Link, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://cwiki.apache.org/confluence/display/WW/S2-057	Issue Tracking, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/hook-s3c/CVE-2018-11776-Python-PoC	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lgtm.com/blog/apache_struts_CVE-2018-11776	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E	Mailing List
af854a3a-2127-422b-91ae-364da2661108	https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20180822-0001/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20181018-0002/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.exploit-db.com/exploits/45260/	Exploit, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://www.exploit-db.com/exploits/45262/	Exploit, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://www.exploit-db.com/exploits/45367/	Exploit, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://www.oracle.com/security-alerts/cpujul2020.html	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html	Patch, Third Party Advisory
134c704f-9b21-4f2e-91b3-4a467353bcc0	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-11776	US Government Resource

Impacted products

Vendor	Product	Version
apache	struts	*
apache	struts	*
netapp	active_iq_unified_manager	*
netapp	active_iq_unified_manager	*
netapp	oncommand_insight	-
netapp	oncommand_workflow_automation	-
netapp	snapcenter	-
oracle	communications_policy_management	*
oracle	enterprise_manager_base_platform	13.3.0.0
oracle	enterprise_manager_base_platform	13.4.0.0
oracle	mysql_enterprise_monitor	*
oracle	mysql_enterprise_monitor	*
oracle	mysql_enterprise_monitor	*

JSON

To clipboard

{
  "cisaActionDue": "2022-05-03",
  "cisaExploitAdd": "2021-11-03",
  "cisaRequiredAction": "Apply updates per vendor instructions.",
  "cisaVulnerabilityName": "Apache Struts Remote Code Execution Vulnerability",
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "688F84A7-B698-4343-9F7B-FD68B2218035",
              "versionEndExcluding": "2.3.35",
              "versionStartIncluding": "2.0.4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D66D46C-389B-4C37-9EEE-6301774719FA",
              "versionEndExcluding": "2.5.17",
              "versionStartIncluding": "2.5.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*",
              "matchCriteriaId": "BD075607-09B7-493E-8611-66D041FFDA62",
              "versionStartIncluding": "7.3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*",
              "matchCriteriaId": "0CB28AF5-5AF0-4475-A7B6-12E1795FFDCB",
              "versionStartIncluding": "9.5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F1BE6C1F-2565-4E97-92AA-16563E5660A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5735E553-9731-4AAC-BCFF-989377F817B3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BDFB1169-41A0-4A86-8E4F-FDA9730B1E94",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:oracle:communications_policy_management:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0E8AF73E-8AC6-4F65-A6F0-DBB2CC7A613F",
              "versionEndExcluding": "12.5.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:enterprise_manager_base_platform:13.3.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7582B307-3899-4BBB-B868-BC912A4D0109",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D26F3E23-F1A9-45E7-9E5F-0C0A24EE3783",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8A94B32D-6B5F-4E42-8345-4F9126A89435",
              "versionEndIncluding": "3.4.9.4237",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "EF71D94F-EFC5-4390-A380-AC0E5DB05516",
              "versionEndIncluding": "4.0.6.5281",
              "versionStartIncluding": "4.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "33EFAF19-A639-47AD-9CDC-D174C91F0F00",
              "versionEndIncluding": "8.0.2.8191",
              "versionStartIncluding": "8.0.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn\u0027t have value and action set and in same time, its upper package have no or wildcard namespace."
    },
    {
      "lang": "es",
      "value": "Apache Struts, desde la versi\u00f3n 2.3 hasta la 2.3.34 y desde la versi\u00f3n 2.5 hasta la 2.5.16, sufre de una posible ejecuci\u00f3n remota de c\u00f3digo cuando el valor de alwaysSelectFullNamespace es \"true\" (establecido por el usuario o por un plugin como Convention Plugin). Adem\u00e1s, los resultados se emplean sin ning\u00fan espacio de nombres y, al mismo tiempo, el paquete superior no tiene espacio de nombres o contiene caracteres comod\u00edn. De manera similar a como pasa con los resultados, existe la misma posibilidad al emplear la etiqueta url, que no tiene un valor y acci\u00f3n definidos y, adem\u00e1s, su paquete superior no tiene espacio de nombres o contiene caracteres comod\u00edn."
    }
  ],
  "id": "CVE-2018-11776",
  "lastModified": "2025-10-27T17:38:06.077",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2018-08-22T13:29:00.753",
  "references": [
    {
      "source": "security@apache.org",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Broken Link",
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Broken Link",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/105125"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Broken Link",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1041547"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Broken Link",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1041888"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://github.com/hook-s3c/CVE-2018-11776-Python-PoC"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://lgtm.com/blog/apache_struts_CVE-2018-11776"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Mailing List"
      ],
      "url": "https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.netapp.com/advisory/ntap-20180822-0001/"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.netapp.com/advisory/ntap-20181018-0002/"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Exploit",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://www.exploit-db.com/exploits/45260/"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Exploit",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://www.exploit-db.com/exploits/45262/"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Exploit",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://www.exploit-db.com/exploits/45367/"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
    },
    {
      "source": "security@apache.org",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/105125"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1041547"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1041888"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://github.com/hook-s3c/CVE-2018-11776-Python-PoC"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://lgtm.com/blog/apache_struts_CVE-2018-11776"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List"
      ],
      "url": "https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.netapp.com/advisory/ntap-20180822-0001/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.netapp.com/advisory/ntap-20181018-0002/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://www.exploit-db.com/exploits/45260/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://www.exploit-db.com/exploits/45262/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://www.exploit-db.com/exploits/45367/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-11776"
    }
  ],
  "sourceIdentifier": "security@apache.org",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CNVD-2018-15894

Vulnerability from cnvd - Published: 2018-08-22

Title

Apache Struts2 S2-057远程代码执行漏洞

Description

Struts2是Apache软件基金会负责维护的一个基于MVC设计模式的Web应用框架开源项目。 Apache Struts2存在S2-057远程代码执行漏洞。漏洞触发条件：1、定义XML配置时namespace值未设置且上层动作配置（Action Configuration）中未设置或用通配符namespace。2、url标签未设置value和action值且上层动作未设置或用通配符namespace。攻击者可利用漏洞执行RCE攻击。

Severity

高

Patch Name

Apache Struts2 S2-057远程代码执行漏洞的补丁

Patch Description

Formal description

用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞： https://cwiki.apache.org/confluence/display/WW/S2-057?tdsourcetag=s_pcqq_aiomsg

Reference

https://cwiki.apache.org/confluence/display/WW/S2-057?tdsourcetag=s_pcqq_aiomsg

Impacted products

Name
['Apache Struts2 >=2.3，<=2.3.34', 'Apache Struts2 >=2.5，<=2.5.16']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-11776"
    }
  },
  "description": "Struts2\u662fApache\u8f6f\u4ef6\u57fa\u91d1\u4f1a\u8d1f\u8d23\u7ef4\u62a4\u7684\u4e00\u4e2a\u57fa\u4e8eMVC\u8bbe\u8ba1\u6a21\u5f0f\u7684Web\u5e94\u7528\u6846\u67b6\u5f00\u6e90\u9879\u76ee\u3002\r\n \r\nApache Struts2\u5b58\u5728S2-057\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u6f0f\u6d1e\u89e6\u53d1\u6761\u4ef6\uff1a1\u3001\u5b9a\u4e49XML\u914d\u7f6e\u65f6namespace\u503c\u672a\u8bbe\u7f6e\u4e14\u4e0a\u5c42\u52a8\u4f5c\u914d\u7f6e\uff08Action Configuration\uff09\u4e2d\u672a\u8bbe\u7f6e\u6216\u7528\u901a\u914d\u7b26namespace\u30022\u3001url\u6807\u7b7e\u672a\u8bbe\u7f6evalue\u548caction\u503c\u4e14\u4e0a\u5c42\u52a8\u4f5c\u672a\u8bbe\u7f6e\u6216\u7528\u901a\u914d\u7b26namespace\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u6267\u884cRCE\u653b\u51fb\u3002",
  "discovererName": "Man Yue Mo from the Semmle Security Research team",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a \r\nhttps://cwiki.apache.org/confluence/display/WW/S2-057?tdsourcetag=s_pcqq_aiomsg",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-15894",
  "openTime": "2018-08-22",
  "patchDescription": "Struts2\u662fApache\u8f6f\u4ef6\u57fa\u91d1\u4f1a\u8d1f\u8d23\u7ef4\u62a4\u7684\u4e00\u4e2a\u57fa\u4e8eMVC\u8bbe\u8ba1\u6a21\u5f0f\u7684Web\u5e94\u7528\u6846\u67b6\u5f00\u6e90\u9879\u76ee\u3002\r\n\r\nApache Struts2\u5b58\u5728S2-057\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u6f0f\u6d1e\u89e6\u53d1\u6761\u4ef6\uff1a1\u3001\u5b9a\u4e49XML\u914d\u7f6e\u65f6namespace\u503c\u672a\u8bbe\u7f6e\u4e14\u4e0a\u5c42\u52a8\u4f5c\u914d\u7f6e\uff08Action Configuration\uff09\u4e2d\u672a\u8bbe\u7f6e\u6216\u7528\u901a\u914d\u7b26namespace\u30022\u3001url\u6807\u7b7e\u672a\u8bbe\u7f6evalue\u548caction\u503c\u4e14\u4e0a\u5c42\u52a8\u4f5c\u672a\u8bbe\u7f6e\u6216\u7528\u901a\u914d\u7b26namespace\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u6267\u884cRCE\u653b\u51fb\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Apache Struts2 S2-057\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Apache Struts2 \u003e=2.3\uff0c\u003c=2.3.34",
      "Apache Struts2 \u003e=2.5\uff0c\u003c=2.5.16"
    ]
  },
  "referenceLink": "https://cwiki.apache.org/confluence/display/WW/S2-057?tdsourcetag=s_pcqq_aiomsg",
  "serverity": "\u9ad8",
  "submitTime": "2018-08-22",
  "title": "Apache Struts2 S2-057\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e"
}

GHSA-CR6J-3JP9-RW65

Vulnerability from github – Published: 2018-10-18 19:24 – Updated: 2025-10-22 17:29

Summary

Apache Struts vulnerable to remote command execution (RCE) due to improper input validation

Details

Apache Struts contains a Remote Code Execution when using results with no namespace and it's upper actions have no or wildcard namespace. The same flaw exists when using a url tag with no value, action set, and it's upper actions have no or wildcard namespace.

Severity ?

8.1 (High)


                  
                    CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 2.3.34"
      },
      "package": {
        "ecosystem": "Maven",
        "name": "org.apache.struts:struts2-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.0.4"
            },
            {
              "fixed": "2.3.35"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 2.5.16"
      },
      "package": {
        "ecosystem": "Maven",
        "name": "org.apache.struts:struts2-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.5"
            },
            {
              "fixed": "2.5.17"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2018-11776"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2020-06-16T21:32:43Z",
    "nvd_published_at": "2018-08-22T13:29:00Z",
    "severity": "HIGH"
  },
  "details": "Apache Struts contains a Remote Code Execution when using results with no namespace and it\u0027s upper actions have no or wildcard namespace. The same flaw exists when using a url tag with no value, action set,  and it\u0027s upper actions have no or wildcard namespace.",
  "id": "GHSA-cr6j-3jp9-rw65",
  "modified": "2025-10-22T17:29:40Z",
  "published": "2018-10-18T19:24:38Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11776"
    },
    {
      "type": "WEB",
      "url": "https://github.com/apache/struts/commit/6e87474f9ad0549f07dd2c37d50a9ccd0977c6e"
    },
    {
      "type": "WEB",
      "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
    },
    {
      "type": "WEB",
      "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
    },
    {
      "type": "WEB",
      "url": "https://www.exploit-db.com/exploits/45367"
    },
    {
      "type": "WEB",
      "url": "https://www.exploit-db.com/exploits/45262"
    },
    {
      "type": "WEB",
      "url": "https://www.exploit-db.com/exploits/45260"
    },
    {
      "type": "WEB",
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-11776"
    },
    {
      "type": "WEB",
      "url": "https://web.archive.org/web/20201208145803/https://securitytracker.com/id/1041547"
    },
    {
      "type": "WEB",
      "url": "https://web.archive.org/web/20200807025819/http://www.securitytracker.com/id/1041888"
    },
    {
      "type": "WEB",
      "url": "https://web.archive.org/web/20180822160726/http://www.securityfocus.com/bid/105125"
    },
    {
      "type": "WEB",
      "url": "https://security.netapp.com/advisory/ntap-20181018-0002"
    },
    {
      "type": "WEB",
      "url": "https://security.netapp.com/advisory/ntap-20180822-0001"
    },
    {
      "type": "WEB",
      "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012"
    },
    {
      "type": "WEB",
      "url": "https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c@%3Cannounce.apache.org%3E"
    },
    {
      "type": "WEB",
      "url": "https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3E"
    },
    {
      "type": "WEB",
      "url": "https://lgtm.com/blog/apache_struts_CVE-2018-11776"
    },
    {
      "type": "WEB",
      "url": "https://github.com/hook-s3c/CVE-2018-11776-Python-PoC"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/apache/struts"
    },
    {
      "type": "WEB",
      "url": "https://cwiki.apache.org/confluence/display/WW/S2-057"
    },
    {
      "type": "WEB",
      "url": "http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution.html"
    },
    {
      "type": "WEB",
      "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt"
    },
    {
      "type": "WEB",
      "url": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-5072787.html"
    },
    {
      "type": "WEB",
      "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/105125"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1041547"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1041888"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Apache Struts vulnerable to remote command execution (RCE) due to improper input validation"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2018-11776 (GCVE-0-2018-11776)

CISA Known Exploited Vulnerability

Data from the CISA Known Exploited Vulnerabilities Catalog

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Solution

Tags

Sightings

Nomenclature