Statements (19)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:security
|
| gptkbp:affects |
gptkb:Apache_Struts_2
|
| gptkbp:attack_vector |
Remote
|
| gptkbp:citation |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11776
https://struts.apache.org/docs/s2-057.html |
| gptkbp:CWE_ID |
gptkb:CWE-20
|
| gptkbp:describes |
A remote code execution vulnerability in Apache Struts 2 due to improper namespace handling in the Struts configuration.
|
| gptkbp:discoveredBy |
2018
|
| gptkbp:exploits |
Yes
|
| gptkbp:hasCVSSScore |
9.8
|
| https://www.w3.org/2000/01/rdf-schema#label |
CVE-2018-11776
|
| gptkbp:impact |
Critical
|
| gptkbp:patchedBy |
gptkb:Apache_Struts_2.3.35
gptkb:Apache_Struts_2.5.17 |
| gptkbp:publicationDate |
2018-08-22
|
| gptkbp:vulnerableTo |
gptkb:CVE-2018-11776
Remote Code Execution |
| gptkbp:bfsParent |
gptkb:Apache_Struts
|
| gptkbp:bfsLayer |
6
|