Threat Advisories - NVD Disclosed July 10, 2017

CVE-2017-9791

Apache Struts Remote Code Execution Vulnerability.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

The Apache Struts 1 plugin has a vulnerability that may permit remote code execution when processing a malicious field value. This poses a risk of unauthorized system access and control for affected organizations.

NVD published: July 10, 2017 • CISA KEV