CVE-2012-0391 - Apache Struts 2 Improper Input Validation Vulnerability
Project:Apache
Product:Struts 2
Date Added:2022-01-21Due Date:2022-07-21
Vulnerability Name
Apache Struts 2 Improper Input Validation Vulnerability
Description
The ExceptionDelegator component in Apache Struts 2 before 2.2.3.1 contains an improper input validation vulnerability that allows for remote code execution.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2012-0391