Struts File Upload Vulnerability Could Lead to Remote Code Execution

CVE-2023-50164

9.8CRITICAL

Key Information

Vendor
Apache
Status
Apache Struts
Vendor
CVE Published:
7 December 2023

Badges

👾 Exploit Exists🔴 Public PoC🟡 EPSS 53%📰 News Worthy

Summary

The CVE-2023-50164 vulnerability in Apache Struts enables remote code execution and is being actively exploited by threat actors. It affects a wide range of systems, including those used by Fortune 500 companies and various industries. The vulnerability requires specific conditions for exploitation, limiting the scope of potential attacks but still posing a significant risk. It is crucial for organizations to upgrade to the recommended Struts versions to address the issue. It's also important to note that previous vulnerabilities in Apache Struts have been exploited by ransomware groups, highlighting the urgency of addressing this vulnerability.

Affected Version(s)

Apache Struts <= 2.5.32

Apache Struts <= 6.3.0.1

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2023-50164-Apache-Struts-RCE
Created by jakabakos

cve-2023-50164-poc
Created by dwisiswant0

CVE-2023-50164-ApacheStruts2-Docker
Created by Trackflaw

News Articles

favicon imagecyfirma

Cyber Threat Intelligence Reports | Risk Research | Out of Band

Cyber Threat Intelligence Reports and the latest research on Cybersecurity risks applicable to an organization, its industry, and geography.

11 months ago

favicon imageDark Reading

Patch Now: Exploit Activity Mounts for Dangerous Apache Struts 2 Bug

CVE-2023-50164 is harder to exploit than the 2017 Struts bug behind the massive breach at Equifax, but don't underestimate the potential for attackers to use it in targeted attacks.

11 months ago

favicon imageSecurity Boulevard

Apache Struts 2 Vulnerability CVE-2023-50164 Exposed

The latest vulnerability CVE-2023-50164 disclosed on Apache Struts affects the Struts 2 framework's file upload logic, allowing unauthorized path traversal. The post Apache Struts 2 Vulnerability CVE-2023-50164 Exposed appeared first on Indusface.

1 year ago

Refferences

https://lists.apache.org/thread/yh09b3fkf6vz5d6jdgrlvmg60...
vendor-advisorymailing-list
https://www.openwall.com/lists/oss-security/2023/12/07/1
http://packetstormsecurity.com/files/176157/Struts-S2-066...
https://security.netapp.com/advisory/ntap-20231214-0010/

EPSS Score

53% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🔴

    Public PoC available

  • 👾

    Exploit known to exist

  • First article discovered by BleepingComputer

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database11 Proof of Concept(s)15 News Article(s)

Credit

Steven Seeley of Source Incite
.