URL has been copied successfully!
Apache Struts Arbitrary File Upload Vulnerability S2-067 (CVE-2024-53677)
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Apache Struts Arbitrary File Upload Vulnerability S2-067 (CVE-2024-53677)

by

Andy Stern
in

Tags: , , , , ,

Overview Recently, NSFOCUS CERT monitored that Apache released a security bulletin, fixing the Apache Struts arbitrary file upload vulnerability S2-067 (CVE-2024-53677). Due to a logical defect in the file upload function, an unauthenticated attacker can perform path traversal by controlling the file upload parameters, thereby uploading malicious files to achieve remote code execution. The CVSS…The post Apache Struts Arbitrary File Upload Vulnerability S2-067 (CVE-2024-53677) appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..

First seen on securityboulevard.com

Jump to article: https://securityboulevard.com/2024/12/apache-struts-arbitrary-file-upload-vulnerability-s2-067-cve-2024-53677/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Who’s Afraid of a Toxic Cloud Trilogy?
  2. CISA Warns of Actors Exploiting Two Palo Alto Networks Vulnerabilities
  3. Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps
  4. Hackers Exploiting Apache Struts2 Vulnerability to Upload Malicious Payloads