Security News

Stop us if you've heard this one: Remote code hijacking flaw in Apache Struts, patch ASAP
2018-11-07 01:49

Advisory issued over yet another critical security vulnerability The Apache Foundation is urging developers to update their Struts 2 installations and projects using the code – after a critical...

Apache Struts Users Told to Update Vulnerable Component
2018-11-06 14:21

Apache Struts developers are urging users to update a file upload library due to the existence of two vulnerabilities that can be exploited for remote code execution and denial-of-service (DoS)...

Apache Struts Warns Users of Two-Year-Old Vulnerability
2018-11-06 13:27

Users must update their vulnerable libraries manually.

Apache Struts 2.3.x vulnerable to two year old RCE flaw
2018-11-06 11:28

The Apache Software Foundation is urging users that run Apache Struts 2.3.x to update the Commons FileUpload library to close a serious vulnerability that could be exploited for remote code...

What You Need to Know about the Recent Apache Struts Vulnerability
2018-11-05 09:55

Researchers recently revealed a vulnerability in Apache Struts, a popular type of enterprise software. Active exploit attempts weren’t far behind.

Mirai, Gafgyt Botnets Return to Target Infamous Apache Struts, SonicWall Flaws
2018-09-10 14:23

By implementing the "Equifax bug," it's the first known time a Mirai IoT botnet variant has targeted an Apache Struts vulnerability.

IoT Botnets Target Apache Struts, SonicWall GMS
2018-09-10 11:58

The infamous Mirai and Gafgyt Internet of Things (IoT) botnets are targeting vulnerabilities in Apache Struts and the SonicWall Global Management System (GMS), Palo Alto Networks has discovered. read more

Cisco fixes a host of security holes, including latest Apache Struts flaw
2018-09-06 20:21

Cisco has plugged a heap of security holes – three of which are critical – in a variety of its products. The critical flaws The flaws deemed critical are: A DoS and RCE vulnerability...

Active Campaign Exploits Critical Apache Struts 2 Flaw in the Wild
2018-09-05 17:48

A Monero cryptomining script is spreading in an ongoing campaign using the recently disclosed critical remote command-execution flaw.

CVE-2018-11776 — The Latest Apache Struts Vulnerability
2018-09-04 10:49

A Critical security flaw (CVE-2018-11776) impacts Apache Struts 2.3 through 2.3.34, Struts 2.5 through 2.5.16, and possibly unsupported versions of the popular Java framework.