Hacking News New Critical RCE Vulnerability Discovered in Apache Struts 2 - Patch Now

Hacking News New Critical RCE Vulnerability Discovered in Apache Struts 2 - Patch Now - Printable Version

+- (https://hackmyride.com/forum)
+-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211)
+--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278)
+---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279)
+---- Thread: Hacking News New Critical RCE Vulnerability Discovered in Apache Struts 2 - Patch Now (/showthread.php?tid=11688)

New Critical RCE Vulnerability Discovered in Apache Struts 2 - Patch Now - The Hacker News - 12-12-2023

New Critical RCE Vulnerability Discovered in Apache Struts 2 - Patch Now

Apache has released a security advisory warning of a critical security flaw in the Struts 2 open-source web application framework that could result in remote code execution.
Tracked as CVE-2023-50164, the vulnerability is rooted in a flawed "file upload logic" that could enable unauthorized path traversal and could be exploited under the circumstances to upload a malicious file

https://thehackernews.com/2023/12/new-critical-rce-vulnerability.html