Security News > 2018 > September > Active Campaign Exploits Critical Apache Struts 2 Flaw in the Wild

Active Campaign Exploits Critical Apache Struts 2 Flaw in the Wild

2018-09-05 17:48

A Monero cryptomining script is spreading in an ongoing campaign using the recently disclosed critical remote command-execution flaw.

News URL

https://threatpost.com/active-campaign-exploits-critical-apache-struts-2-flaw-in-the-wild/137207/

#apache #apachestruts #critical #exploit #struts

Related news

Critical Ivanti RCE flaw with public exploit now used in attacks (source)
Critical Apache Avro SDK Flaw Allows Remote Code Execution in Java Applications (source)
Qualcomm Urges OEMs to Patch Critical DSP and WLAN Flaws Amid Active Exploits (source)
Exploit code for critical GitLab auth bypass flaw released (CVE-2024-45409) (source)
Akira and Fog ransomware now exploit critical Veeam RCE flaw (source)
1000s of Palo Alto Networks firewalls hijacked as miscreants exploit critical hole (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Apache		281	13	544	711	366	1634

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.