New RCE vulnerability in Apache Struts 2 fixed, upgrade ASAP (CVE-2023-50164) – ITTS

New RCE vulnerability in Apache Struts 2 fixed, upgrade ASAP (CVE-2023-50164)

8 December 2023

The Apache Struts project has released updates for the popular open-source web application framework, with fixes for a critical vulnerability that could lead to remote code execution (CVE-2023-50164). About CVE-2023-50164 CVE-2023-50164 may allow an attacker to manipulate file upload parameters to enable path traversal.

Source: Help Net Security

Date:

8 December 2023

Categorie(s):

Tag(s):

Apache Software Foundation, Apache Struts, IT, New, Open Source

Google fixes 2 Vertex AI flaws that could lead to privilege escalation, model leaks15 November 2024
The Importance of Team Culture in Startups – Brian Carbaugh – FS #415 November 2024
Data breach exposes 122M records from DemandScience following initial denials15 November 2024
Bitsight acquires threat intelligence provider Cybersixgill for $115M15 November 2024
122 million people’s business contact info leaked by data broker14 November 2024