CVE-2023-50164

Vulnerability updated 22 days ago (2024-11-29T14:19:01.793Z)

Download STIX

Preview STIX

CVE-2023-50164 is a critical vulnerability detected within multiple versions of Apache Struts 2, a widely used open-source framework for developing Java EE web applications. The flaw lies in the software's design or implementation and affects versions 2.0.0 to 2.3.37, 2.5.0 to 2.5.32, and 6.0.0 to 6.3.0. This security issue was disclosed by Apache in a bulletin released on December 4, 2023. Apache has taken prompt action to address this severe vulnerability by releasing security updates for Struts 2. The updates aim to patch the flaw identified as CVE-2023-50164 and protect users from potential exploits that could compromise their systems. Users are strongly advised to apply these updates immediately to mitigate any risks associated with this vulnerability. In conclusion, CVE-2023-50164 represents a significant threat to any system running the affected versions of Apache Struts 2. The Apache Software Foundation has acted swiftly to rectify this issue by providing necessary security updates. It is crucial for all users to update their systems promptly to ensure their security and prevent potential breaches.

Description last updated: 2024-03-17T13:16:36.013Z

What's your take? (Question 1 of 2)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Vulnerability

Struts

Apache

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Source Document References

Information about the CVE-2023-50164 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
SANS ISC	6 hours ago	Exploit attempts inspired by recent Struts2 File Upload Vulnerability (CVE-2024-53677, CVE-2023-50164) - SANS Internet Storm Center
Securityaffairs	6 hours ago	Threat actors are attempting to exploit Apache Struts vulnerability CVE-2024-53677
DARKReading	6 hours ago	Orgs Scramble to Fix Actively Exploited Bug in Struts 2
Securityaffairs	4 months ago	SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 6
Securityaffairs	5 months ago	security-affairs-malware-newsletter-round-5
Securityaffairs	5 months ago	Security Affairs Malware Newsletter - Round 3
Securityaffairs	5 months ago	Security Affairs Malware Newsletter - Round 3
Securityaffairs	5 months ago	Security Affairs Malware Newsletter - Round 2
Securityaffairs	5 months ago	Security Affairs Malware Newsletter - Round 1
Securityaffairs	6 months ago	Security Affairs newsletter Round 478 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	6 months ago	Security Affairs newsletter Round 477 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	6 months ago	Security Affairs newsletter Round 476 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	7 months ago	Security Affairs newsletter Round 473 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	8 months ago	Security Affairs newsletter Round 470 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	8 months ago	Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	8 months ago	Security Affairs newsletter Round 467 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	8 months ago	Security Affairs newsletter Round 466 by Pierluigi Paganini
Securityaffairs	9 months ago	Security Affairs newsletter Round 465 by Pierluigi Paganini
Securityaffairs	9 months ago	Security Affairs newsletter Round 464 by Pierluigi Paganini
Securityaffairs	9 months ago	Security Affairs newsletter Round 463 by Pierluigi Paganini