all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hackers Exploiting Critical Apache Struts Flaw

Add to bookmarks
Dec. 14, 2023, 11:10 p.m. |

GovInfoSecurity.com RSS Syndication www.govinfosecurity.com

Bug Enables Path Traversal Attack
Hackers are using publicly disclosed proof-of-concept code to exploit a recently patched critical vulnerability found in the Apache Struts 2 Framework to achieve remote code execution. The Apache Foundation, which manages the Struts library, on Dec. 7 urged developers to apply a patch.

apache apache struts bug code code execution concept critical critical vulnerability dec developers exploit exploiting flaw found foundation framework hackers library patch path path traversal proof proof-of-concept remote code remote code execution struts struts 2 vulnerability

Visit resource

More from www.govinfosecurity.com / GovInfoSecurity.com RSS Syndication

OpenAI Disrupts AI-Deployed Influence Operations 1 day, 6 hours ago | www.govinfosecurity.com
artificial artificial intelligence campaigns china +16
New Logpoint CEO Mikkel Drucker Seeks Growth Via M&A, MSSPs 1 day, 7 hours ago | www.govinfosecurity.com
acquisitions capabilities ceo charge +13
ISMG Editors: Is SASE Living Up to the Hype in 2024? 1 day, 8 hours ago | www.govinfosecurity.com
access apple ascension current +21
Hacker Sells Apparent Santander Bank Customer Data 1 day, 8 hours ago | www.govinfosecurity.com
bank criminal customer customer data +12
Senator Urges FTC, SEC to Investigate UHG's Cyberattack 1 day, 8 hours ago | www.govinfosecurity.com
asking board ceo change +24
What's in Biden's Security Memo for the Healthcare Sector? 1 day, 9 hours ago | www.govinfosecurity.com
assessment biden components council +16
First-Party Fraud's Big Comeback in Banking and Lending 1 day, 10 hours ago | www.govinfosecurity.com
bad bank banking big +25
Webinar | Identity Crisis: Combating Account Takeovers at Scale 1 day, 15 hours ago | www.govinfosecurity.com
account account takeovers crisis identity +4
Why Barracuda Networks Is Eyeing MSP Platform Vendor N-able 2 days, 6 hours ago | www.govinfosecurity.com
barracuda barracuda networks beyond equity +21

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com