1. Home
  2. Vulnerabilities
  3. CVE-2018-11776

CVE-2018-11776

CVSS v3.1 8.1 (High)
81% Progress
CVSS v2.0 9.3 (High)
93% Progress
EPSS 97.52 % (100th)
97.52% Progress
Affected Products 8
Advisories 3
NVD Status Analyzed
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn't have value and action set and in same time, its upper package have no or wildcard namespace.

Weaknesses
CWE-NVD-noinfo
CVE Status
PUBLISHED
NVD Status
Analyzed
CNA
Apache Software Foundation
Published Date
2018-08-22 13:29:00
(6 years ago)
Updated Date
2024-07-25 14:48:56
(7 weeks ago)
Apache Struts Remote Code Execution Vulnerability (CISA - Known Exploited Vulnerabilities Catalog)
Description
Apache Struts contains a vulnerability that allows for remote code execution under two circumstances. One, where the alwaysSelectFullNamespace option is true and the value isn't set for a result defined in underlying configurations and in same time, its upper package configuration have no or wildcard namespace. Or, using URL tag which doesn't have value and action set and in same time, its upper package configuration have no or wildcard namespace.
Required Action
Apply updates per vendor instructions.
Known to be Used in Ransomware Campaigns
Unknown
Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-11776
Vendor
Apache
Product
Struts
In CISA Catalog from
2021-11-03
(2 years ago)
Due Date
2022-05-03
(2 years ago)

Affected Products

Apache

Netapp

Oracle

Configuration #1

    CPE23 From Up To
  Apache Struts from 2.0.4 version and prior 2.3.35 version cpe:2.3:a:apache:struts >= 2.0.4 < 2.3.35
  Apache Struts from 2.5.0 version and prior 2.5.17 version cpe:2.3:a:apache:struts >= 2.5.0 < 2.5.17

Configuration #2

    CPE23 From Up To
  Netapp Active Iq Unified Manager for Windows from 7.3 version cpe:2.3:a:netapp:active_iq_unified_manager::*:*:*:*:windows >= 7.3
  Netapp Active Iq Unified Manager for Vmware Vsphere from 9.5 version cpe:2.3:a:netapp:active_iq_unified_manager::*:*:*:*:vmware_vsphere >= 9.5
  Netapp Oncommand Insight cpe:2.3:a:netapp:oncommand_insight:-
  Netapp Oncommand Workflow Automation cpe:2.3:a:netapp:oncommand_workflow_automation:-
  Netapp Snapcenter cpe:2.3:a:netapp:snapcenter:-

Configuration #3

    CPE23 From Up To
  Oracle Communications Policy Management prior 12.5.0 version cpe:2.3:a:oracle:communications_policy_management < 12.5.0
  Oracle Enterprise Manager Base Platform 13.3.0.0 cpe:2.3:a:oracle:enterprise_manager_base_platform:13.3.0.0
  Oracle Enterprise Manager Base Platform 13.4.0.0 cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0
  Oracle Mysql Enterprise Monitor 3.4.9.4237 and prior versions cpe:2.3:a:oracle:mysql_enterprise_monitor <= 3.4.9.4237
  Oracle Mysql Enterprise Monitor from 4.0.0 version and 4.0.6.5281 and prior versions cpe:2.3:a:oracle:mysql_enterprise_monitor >= 4.0.0 <= 4.0.6.5281
  Oracle Mysql Enterprise Monitor from 8.0.0 version and 8.0.2.8191 and prior versions cpe:2.3:a:oracle:mysql_enterprise_monitor >= 8.0.0 <= 8.0.2.8191