Security advisories

Apache Struts 2 Remote Code Vulnerability

February 26, 2019 | 1 MIN READ

Speak With A Security Expert Now

TALK TO AN EXPERT

The eSentire threat intelligence team has observed ongoing network attacks targeting vulnerable Apache Struts 2 web frameworks. The vulnerability CVE-2017-5638 is being actively exploited in the wild resulting in the compromise of integrity and confidentiality of web servers. All customers are advised to scan for and perform remediation on any vulnerable servers on their network immediately.

The Vulnerability

The exploitation of the Struts 2 vulnerability allows the execution of arbitrary commands and remote code on the target server without any authentication. Attackers have been observed installing various types of malware onto vulnerable systems. Compromised web servers can be used to spread malware to website visitors, or users, the compromised server can hijack for ransom or used facilitate further attacks that may result in financial and reputational damage to the affected organizations.

Recommended Actions

eSentire Protection

Additional Details

Additional Details

View Most Recent Advisories