Apache Struts 2 Improper Input Validation Vulnerability

NVD

Known Exploited Vulnerability

CVE-2012-0391, Apache Struts 2 Improper Input Validation Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. The ExceptionDelegator component in Apache Struts 2 before 2.2.3.1 contains an improper input validation vulnerability which allows for remote code execution.

The following remediation steps are recommended / required by July 21, 2022: Apply updates per vendor instructions.