Security advisories

Update: CVE-2017-5638 Apache Struts 2 Remote Code Execution Vulnerability

February 26, 2019 | 1 MIN READ

Speak With A Security Expert Now

TALK TO AN EXPERT

The eSentire Security Operations Center (SOC) is observing a widespread, marked increase of scanning and exploitation events across multiple targets originating from IP ranges across the globe.

What you should do about it:

We recommend scanning all internet facing servers for CVE-207-5638, and perform remediation on any vulnerable servers on their network immediately. Observed exploitations allow the execution of arbitrary commands and remote code on the target server without any authentication. This takes advantage of the Jakarta Multipart parser in Apache Struts versions 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1.

This security advisory has been issued as follow up to the CVE-2017-5638 Apache Struts 2 Remote Code Execution Vulnerability.

View Most Recent Advisories