WHAT HAPPENED?

Apache has released Important and Medium security bulletins to address vulnerabilities in Apache Struts.

Advanced Users: For a complete description of the security vulnerabilities and affected software refer to:

• Apache Security Bulletin S2-059
• Apache Security Bulletin S2-060

AFFECTED SYSTEMS:

• Struts 2.0.0 - Struts 2.5.20

WHAT'S THE PROBLEM?

Exploitation of this vulnerability could allow a remote attacker to perform a remote code execution.

RELATED LINKS

• IT Security
• Struts Announcements 2020