CVE-2023-34149

CVSS v3.1 6.5 (Medium)

EPSS 1.48 % (87^th)

Affected Products 1

Advisories 1

Allocation of Resources Without Limits or Throttling vulnerability in Apache Software Foundation Apache Struts.This issue affects Apache Struts: through 2.5.30, through 6.1.2.

Upgrade to Struts 2.5.31 or 6.1.2.1 or greater.

Weaknesses

CWE-770: Allocation of Resources Without Limits or Throttling

CVE Status: PUBLISHED
CNA: Apache Software Foundation
Published Date: 2023-06-14 08:15:09
(15 months ago)
Updated Date: 2023-07-06 19:15:10
(14 months ago)

Affected Products

Apache

Struts

Configuration #1

		CPE23	From	Up To
	Apache Struts prior 2.5.31 version	cpe:2.3:a:apache:struts		< 2.5.31
	Apache Struts from 6.0.0 version and prior 6.1.2.1 version	cpe:2.3:a:apache:struts	>= 6.0.0	< 6.1.2.1