Search

Security ID : QSA-22-09

Remote Code Execution Vulnerability in Apache Struts

  • Release date : April 18, 2022

  • CVE identifier : CVE-2020-17530 | CVE-2021-31805

  • Not affected products: QNAP products

Severity

None

Status

Not Affected

Summary

A remote code execution vulnerability has been reported to affect Apache Struts versions 2.0.0 to 2.5.29. A previous fix for the vulnerability was found to be incomplete. If exploited, the vulnerability allows remote attackers to run arbitrary commands.

QNAP products are not affected.

Revision History: V1.0 (April 18, 2022) - Published

Zvolte specifikaci

      Zobrazit více Zobrazit méně

      Tato stránka v jiných zemích / oblastech:

      open menu
      back to top