Cisco hunts for Apache Struts 2 FileUpload bug and finds Soiled CoW exploit – CSO





Credit rating: ID 45723755 © Mikhail Dudarev | Dreamstime.com

Cisco has started out scouring its have goods for the Apache Struts 2 flaw disclosed this 7 days and claims it unintentionally delivered computer software with an exploit for the Soiled CoW Linux kernel bug. 

The flaw has an effect on versions Struts 2.3.36 and earlier, which by default use a fileupload library with a two calendar year previous significant flaw that could direct to remote code execution.

Cisco hasn’t confirmed any goods are susceptible but it will be updating this advisory if and when it finds any. 

“The vulnerability is owing to inadequate validation of person-supplied enter by the affected computer software,” Cisco pointed out. 

“An attacker could exploit this vulnerability by submitting crafted details to an affected procedure. A prosperous exploit could make it possible for the attacker to execute arbitrary code or manipulate information on the targeted procedure.”






Cisco Server Routine maintenance

Leave a Reply

Your email address will not be published.