FortiGuard
Fortinet’s Global Threat Intelligence and Research
nzacharakis
Staff
Staff
Article Id 366387

 

Description

FortiGuard Labs has detected on-going exploit attempts targeting a recently patched Apache Struts 2 vulnerability. Attackers can manipulate file upload parameters to enable path traversal, potentially leading to malicious file upload. This may result in Remote Code Execution, allowing attackers to run arbitrary code, steal data, or compromise entire systems.

CVEs

CVE-2024-53677,CVE-2023-50164

Severity

Critical

Posted On

Dec 20, 2024

Outbreak Report Link

https://www.fortiguard.com/outbreak-alert/apache-struts-2-rce