vulnerability

Obsolete Version of Apache Struts

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	Aug 7, 2017	Aug 7, 2017	Dec 30, 2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Aug 7, 2017

Added

Aug 7, 2017

Modified

Dec 30, 2024

Description

Older versions of Apache Struts are no longer officially supported.
There may exist unreported vulnerabilities for these versions. An
upgrade to the latest version should be applied to mitigate
these unknown risks.

Solution

apache-struts-upgrade-latest

References

http://struts.apache.org/download.cgi

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report