CVE-2017-9787 is a vulnerability in Apache Struts
Published on July 13, 2017
When using a Spring AOP functionality to secure Struts actions it is possible to perform a DoS attack. Solution is to upgrade to Apache Struts version 2.5.12 or 2.3.33.
Products Associated with CVE-2017-9787
Want to know whenever a new CVE is published for Apache Struts? stack.watch will email you.
Affected Versions
Apache Software Foundation Apache Struts:- Version 2.3.x prior to 2.3.33 is affected.
- Version 2.5 to 2.5.10.1 is affected.
Exploit Probability
EPSS
8.23%
Percentile
92.12%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.