logo
Home/CVEs/CVE-2013-2251/

CVE-2013-2251 - Apache Struts Improper Input Validation Vulnerability

Project:Apache

Product:Struts

Date Added:2022-03-25Due Date:2022-04-15

Vulnerability Name

Apache Struts Improper Input Validation Vulnerability

Description

Apache Struts allows remote attackers to execute arbitrary Object-Graph Navigation Language (OGNL) expressions.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2013-2251