Security News

Easily exploitable Apache Struts vulnerability opens businesses to attack (Help Net Security)
2017-09-06 17:11

A critical vulnerability in Apache Struts, a popular open source framework for developing web applications, opens any server running an app built using it to remote attackers. It can be exploited...

Exploit Available for Critical Apache Struts Vulnerability (Security Week)
2017-09-06 08:12

The latest version of Apache Struts 2 addresses several vulnerabilities, including a critical remote code execution flaw for which an exploit was created within hours after the release of a patch....

Patch Released for Critical Apache Struts Bug (Threatpost)
2017-09-05 18:10

The Apache Software Foundation released a patch on Tuesday for a critical vulnerability impacting all versions of Struts since 2008.

Record Oracle Patch Update Addresses ShadowBrokers, Struts 2 Vulnerabilities (Threatpost)
2017-04-19 11:20

Oracle released a record 299 patches, including a fix for a Solaris vulnerability disclosed by the ShadowBrokers, and another for the recently disclosed Apache Struts 2 flaw.

Apache Struts 2 Exploits Installing Cerber Ransomware (Threatpost)
2017-04-07 16:46

Attackers are attempting to exploit the recent Apache Struts vulnerability on Windows servers and the payload is a variant of the Cerber ransomware.

Apache Struts Flaw Used to Deliver Cerber Ransomware (SecurityWeek)
2017-04-06 15:33

Atlassian admins, your Struts 2 patch has landed (The Register)
2017-03-20 04:33

In-the-wild exploits ramp up against high-impact sites using Apache Struts (ArsTechnica)
2017-03-14 20:44

VMware Preparing Patches for quot;Catastrophicquot; Struts Flaw (SecurityWeek)
2017-03-14 10:09

Apache Struts 2 bug bites Canada, Cisco (The Register)
2017-03-14 01:04