Apache Struts 1 ActionForm Denial-of-Service Vulnerability

NVD

Known Exploited Vulnerability

CVE-2006-1547, Apache Struts 1 ActionForm Denial-of-Service Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. ActionForm in Apache Struts versions before 1.2.9 with BeanUtils 1.7 contains a vulnerability which allows for denial-of-service.

The following remediation steps are recommended / required by July 21, 2022: Apply updates per vendor instructions.