CVE-2017-12611

EPSS 88.0%

Vexday Risk Score

60Attention

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS —EPSS 88.0%KEV nãoPoC públicaNuclei simMetasploit —Patch —

Lifecycle

08 Sep 2017Public PoC

20 Sep 2017Published on NVD

Recommendation: Plan a near-term fix — a public PoC already exists.

In Apache Struts 2.0.0 through 2.3.33 and 2.5 through 2.5.10.1, using an unintentional expression in a Freemarker tag instead of string literals can lead to a RCE attack.

Affected products

Apache Software Foundation · Apache Struts

public PoCs found — 4

githubgithub.com/brianwrf/S2-053-CVE-2017-12611★ 37 githubgithub.com/tcetin704/CVE-2017-12611★ 0 githubgithub.com/zeynepsilao/CVE-2017-12611_Exploit★ 0 exploitdbwww.exploit-db.com/exploits/44556unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://kb.netapp.com/support/s/article/ka51A000000CgttQAC/NTAP-20170911-0001 https://struts.apache.org/docs/s2-053.html http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-003.txt http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-9805-3889403.html http://www.securityfocus.com/bid/100829