virus logo FortiClient Vulnerability

Apache Struts CVE-2014-0094 Vulnerability

description-logoDescription

The default upload mechanism in Apache Struts 2 is based on Commons FileUpload version 1.3 which is vulnerable and allows DoS attacks. Additional ParametersInterceptor allows access to 'class' parameter which is directly mapped to getClass() method and allows ClassLoader manipulation.

affected-products-logoAffected Applications

Apache Struts

CVE References

CVE-2014-0094

Other References

https://cwiki.apache.org/confluence/display/WW/Security+Bulletins
ID 41609
Created Jan 17, 2020
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor Apache
Patch manual
Application Apache Struts