Apache Struts Security Update (S2-056) CVE-2018-1327
- CVSSv3 Score
- Vulnerability description
Apache Struts is prone to a denial of service (DoS) vulnerability.
- Risk description
The flaw is due to REST Plugin which is using XStream library which is vulnerable and allow to perform a DoS attack when using a malicious request with specially crafted XML payload. Successful exploitation will allow attacker to perform a DoS attack when using a malicious request with specially crafted XML payload.
Update to version 2.5.16 or later.
- Not available