Vulnerability DatabaseCVE-2017-9805
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2017-9805
September 15, 2017
The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHandler with an instance of XStream for deserialization without any type filtering, which can lead to Remote Code Execution when deserializing XML payloads.
Affected Packages
org.apache.struts:struts2-rest-plugin (JAVA):
Affected version(s)
Fix Suggestion:
Update to version 2.3.34
org.apache.struts:struts2-rest-plugin (JAVA):
Affected version(s)
Fix Suggestion:
Update to version 2.5.13
Related ResourcesĀ (21)
https://www.exploit-db.com/exploits/42627/
https://www.kb.cert.org/vuls/id/112992
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-9805
https://www.exploit-db.com/exploits/42627
https://web.archive.org/web/20170909031344/http://www.securityfocus.com/bid/100609
https://github.com/apache/struts/commit/19494718865f2fb7da5ea363de3822f87fbda26
https://cwiki.apache.org/confluence/display/WW/S2-052
https://struts.apache.org/docs/s2-052.html
https://web.archive.org/web/20170922053119/http://www.securitytracker.com/id/1039263
https://nvd.nist.gov/vuln/detail/CVE-2017-9805
https://security.netapp.com/advisory/ntap-20170907-0001
https://github.com/apache/struts
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170907-struts2
https://lgtm.com/blog/apache_struts_CVE-2017-9805
https://security.netapp.com/advisory/ntap-20170907-0001/
https://github.com/apache/struts/commit/6dd6e5cfb7b5e020abffe7e8091bd63fe97c10a
http://www.securitytracker.com/id/1039263
http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-9805-3889403.html
http://www.securityfocus.com/bid/100609
https://bugzilla.redhat.com/show_bug.cgi?id=1488482
https://blogs.apache.org/foundation/entry/apache-struts-statement-on-equifax
Do you need more information?
Contact Us
CVSS v4
Base Score:
9.2
Attack Vector
NETWORK
Attack Complexity
HIGH
Attack Requirements
NONE
Privileges Required
NONE
User Interaction
NONE
Vulnerable System Confidentiality
HIGH
Vulnerable System Integrity
HIGH
Vulnerable System Availability
HIGH
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
Exploit Maturity
ATTACKED
CVSS v3
Base Score:
8.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH
Exploit Maturity
HIGH
CVSS v2
Base Score:
6.8
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
Weakness Type (CWE)
Deserialization of Untrusted Data
CWE-502
EPSS
Base Score:
10.0