Security News > 2018 > September > Active Campaign Exploits Critical Apache Struts 2 Flaw in the Wild

2018-09-05 17:48
A Monero cryptomining script is spreading in an ongoing campaign using the recently disclosed critical remote command-execution flaw.
News URL
https://threatpost.com/active-campaign-exploits-critical-apache-struts-2-flaw-in-the-wild/137207/
Related news
- Stealthy Apache Tomcat Critical Exploit Bypasses Security Filters: Are You at Risk? (source)
- Critical RCE flaw in Apache Tomcat actively exploited in attacks (source)
- Ongoing Cyber Attacks Exploit Critical Vulnerabilities in Cisco Smart Licensing Utility (source)
- Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code (source)
- Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence (source)
- Critical Erlang/OTP SSH pre-auth RCE is 'Surprisingly Easy' to exploit, patch now (source)
- Critical Erlang/OTP SSH RCE bug now has public exploits, patch now (source)
- PoC exploit for critical Erlang/OTP SSH bug is public (CVE-2025-32433) (source)