Vulnerability-Lookup

CVE-2016-4465 (GCVE-0-2016-4465)

Vulnerability from cvelistv5 – Published: 2016-07-04 22:00 – Updated: 2024-08-06 00:32

Summary

The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.1 allows remote attackers to cause a denial of service via a null value for a URL field.

Severity ?

No CVSS data available.

CWE

Assigner

redhat

References

URL

JVNDB-2016-000114

Vulnerability from jvndb - Published: 2016-06-20 16:36 - Updated:2016-08-03 16:20

Severity ?

5.3 (Medium) - cvssV3_0 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Summary

Apache Struts vulnerable to denial-of-service (DoS)

Details

Apache Struts provided by the Apache Software Foundation is a software framework for creating web applications in Java. Web applications that are developed using Apache Struts 2 contain a denial-of-service (DoS) vulnerability due to an issue in URLValidator. ASAI Ken reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.

References

Type

URL

	JVN	https://jvn.jp/en/jp/JVN12352818/
	CVE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4465
	NVD	https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4465
	Improper Input Validation(CWE-20)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html

Impacted products

Vendor

Product

Apache Software Foundation

Apache Struts

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000114.html",
  "dc:date": "2016-08-03T16:20+09:00",
  "dcterms:issued": "2016-06-20T16:36+09:00",
  "dcterms:modified": "2016-08-03T16:20+09:00",
  "description": "Apache Struts provided by the Apache Software Foundation is a software framework for creating web applications in Java. Web applications that are developed using Apache Struts 2 contain a denial-of-service (DoS) vulnerability due to an issue in URLValidator.\r\n\r\nASAI Ken reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000114.html",
  "sec:cpe": {
    "#text": "cpe:/a:apache:struts",
    "@product": "Apache Struts",
    "@vendor": "Apache Software Foundation",
    "@version": "2.2"
  },
  "sec:cvss": [
    {
      "@score": "5.0",
      "@severity": "Medium",
      "@type": "Base",
      "@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
      "@version": "2.0"
    },
    {
      "@score": "5.3",
      "@severity": "Medium",
      "@type": "Base",
      "@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
      "@version": "3.0"
    }
  ],
  "sec:identifier": "JVNDB-2016-000114",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/jp/JVN12352818/",
      "@id": "JVN#12352818",
      "@source": "JVN"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4465",
      "@id": "CVE-2016-4465",
      "@source": "CVE"
    },
    {
      "#text": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4465",
      "@id": "CVE-2016-4465",
      "@source": "NVD"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-20",
      "@title": "Improper Input Validation(CWE-20)"
    }
  ],
  "title": "Apache Struts vulnerable to denial-of-service (DoS)"
}

CNVD-2016-04089

Vulnerability from cnvd - Published: 2016-06-20

Title

Apache Struts2远程代码执行漏洞（CNVD-2016-04089）

Description

Apache Struts是美国阿帕奇（Apache）软件基金会负责维护的一个开源项目，是一套用于创建企业级Java Web应用的开源MVC框架，主要提供两个版本框架产品，Struts 1和Struts 2。Apache Struts 2是Apache Struts的下一代产品，是在Struts 1和WebWork的技术基础上进行了合并的全新Struts 2框架，其体系结构与Struts 1差别较大。 Apache Struts 2.3.20版本至2.3.28.1和2.5版本中存在远程代码执行漏洞。当程序使用built-in URLValidator时，攻击者可借助特制的URL利用该漏洞导致进程超载。

Severity

中

Patch Name

Apache Struts2远程代码执行漏洞（CNVD-2016-04089）的补丁

Patch Description

Formal description

目前厂商已经发布了升级补丁以修复此安全问题，详情请关注厂商主页： http://struts.apache.org/

Reference

https://cwiki.apache.org/confluence/display/WW/S2-041 http://struts.apache.org/index.html

Impacted products

Name
['Apache struts >=2.3.20，<=2.3.28.1', 'Apache struts 2.5']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-4465"
    }
  },
  "description": "Apache Struts\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u8f6f\u4ef6\u57fa\u91d1\u4f1a\u8d1f\u8d23\u7ef4\u62a4\u7684\u4e00\u4e2a\u5f00\u6e90\u9879\u76ee\uff0c\u662f\u4e00\u5957\u7528\u4e8e\u521b\u5efa\u4f01\u4e1a\u7ea7Java Web\u5e94\u7528\u7684\u5f00\u6e90MVC\u6846\u67b6\uff0c\u4e3b\u8981\u63d0\u4f9b\u4e24\u4e2a\u7248\u672c\u6846\u67b6\u4ea7\u54c1\uff0cStruts 1\u548cStruts 2\u3002Apache Struts 2\u662fApache Struts\u7684\u4e0b\u4e00\u4ee3\u4ea7\u54c1\uff0c\u662f\u5728Struts 1\u548cWebWork\u7684\u6280\u672f\u57fa\u7840\u4e0a\u8fdb\u884c\u4e86\u5408\u5e76\u7684\u5168\u65b0Struts 2\u6846\u67b6\uff0c\u5176\u4f53\u7cfb\u7ed3\u6784\u4e0eStruts 1\u5dee\u522b\u8f83\u5927\u3002\r\n\r\nApache Struts 2.3.20\u7248\u672c\u81f32.3.28.1\u548c2.5\u7248\u672c\u4e2d\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u5f53\u7a0b\u5e8f\u4f7f\u7528built-in URLValidator\u65f6\uff0c\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684URL\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u8fdb\u7a0b\u8d85\u8f7d\u3002",
  "discovererName": "ASAI Ken tc535mr2 at gmail dot com",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttp://struts.apache.org/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-04089",
  "openTime": "2016-06-20",
  "patchDescription": "Apache Struts\u662f\u7f8e\u56fd\u963f\u5e15\u5947\uff08Apache\uff09\u8f6f\u4ef6\u57fa\u91d1\u4f1a\u8d1f\u8d23\u7ef4\u62a4\u7684\u4e00\u4e2a\u5f00\u6e90\u9879\u76ee\uff0c\u662f\u4e00\u5957\u7528\u4e8e\u521b\u5efa\u4f01\u4e1a\u7ea7Java Web\u5e94\u7528\u7684\u5f00\u6e90MVC\u6846\u67b6\uff0c\u4e3b\u8981\u63d0\u4f9b\u4e24\u4e2a\u7248\u672c\u6846\u67b6\u4ea7\u54c1\uff0cStruts 1\u548cStruts 2\u3002Apache Struts 2\u662fApache Struts\u7684\u4e0b\u4e00\u4ee3\u4ea7\u54c1\uff0c\u662f\u5728Struts 1\u548cWebWork\u7684\u6280\u672f\u57fa\u7840\u4e0a\u8fdb\u884c\u4e86\u5408\u5e76\u7684\u5168\u65b0Struts 2\u6846\u67b6\uff0c\u5176\u4f53\u7cfb\u7ed3\u6784\u4e0eStruts 1\u5dee\u522b\u8f83\u5927\u3002\r\n\r\nApache Struts 2.3.20\u7248\u672c\u81f32.3.28.1\u548c2.5\u7248\u672c\u4e2d\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u5f53\u7a0b\u5e8f\u4f7f\u7528built-in URLValidator\u65f6\uff0c\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684URL\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u8fdb\u7a0b\u8d85\u8f7d\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Apache Struts2\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2016-04089\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Apache struts \u003e=2.3.20\uff0c\u003c=2.3.28.1",
      "Apache struts 2.5"
    ]
  },
  "referenceLink": "https://cwiki.apache.org/confluence/display/WW/S2-041\r\nhttp://struts.apache.org/index.html",
  "serverity": "\u4e2d",
  "submitTime": "2016-06-16",
  "title": "Apache Struts2\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2016-04089\uff09"
}

GSD-2016-4465

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.1 allows remote attackers to cause a denial of service via a null value for a URL field.

Aliases

CVE-2016-4465

Aliases

CVE-2016-4465

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2016-4465",
    "description": "The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.1 allows remote attackers to cause a denial of service via a null value for a URL field.",
    "id": "GSD-2016-4465",
    "references": [
      "https://www.suse.com/security/cve/CVE-2016-4465.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2016-4465"
      ],
      "details": "The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.1 allows remote attackers to cause a denial of service via a null value for a URL field.",
      "id": "GSD-2016-4465",
      "modified": "2023-12-13T01:21:19.115567Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2016-4465",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.1 allows remote attackers to cause a denial of service via a null value for a URL field."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1348253",
            "refsource": "CONFIRM",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1348253"
          },
          {
            "name": "91278",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/91278"
          },
          {
            "name": "https://struts.apache.org/docs/s2-041.html",
            "refsource": "CONFIRM",
            "url": "https://struts.apache.org/docs/s2-041.html"
          },
          {
            "name": "http://www-01.ibm.com/support/docview.wss?uid=swg21987854",
            "refsource": "CONFIRM",
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21987854"
          },
          {
            "name": "JVN#12352818",
            "refsource": "JVN",
            "url": "http://jvn.jp/en/jp/JVN12352818/index.html"
          },
          {
            "name": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html",
            "refsource": "CONFIRM",
            "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html"
          },
          {
            "name": "JVNDB-2016-000114",
            "refsource": "JVNDB",
            "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000114"
          }
        ]
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "[2.3.20,2.3.20.1],[2.3.20.3],[2.3.24,2.3.24.1],[2.3.24.3],[2.3.28,2.3.28.1],[2.5]",
          "affected_versions": "All versions starting from 2.3.20 up to 2.3.20.1, version 2.3.20.3, all versions starting from 2.3.24 up to 2.3.24.1, version 2.3.24.3, all versions starting from 2.3.28 up to 2.3.28.1, version 2.5",
          "cvss_v2": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "cvss_v3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
          "cwe_ids": [
            "CWE-1035",
            "CWE-20",
            "CWE-937"
          ],
          "date": "2017-08-09",
          "description": "The `URLValidator` class in Apache Struts 2 allows remote attackers to cause a denial of service via a `null` value for a URL field.",
          "fixed_versions": [
            "2.3.29",
            "2.5.1"
          ],
          "identifier": "CVE-2016-4465",
          "identifiers": [
            "CVE-2016-4465"
          ],
          "not_impacted": "All versions before 2.3.20, all versions after 2.3.20.1 before 2.3.20.3, all versions after 2.3.20.3 before 2.3.24, all versions after 2.3.24.1 before 2.3.24.3, all versions after 2.3.24.3 before 2.3.28, all versions after 2.3.28.1 before 2.5, all versions after 2.5",
          "package_slug": "maven/org.apache.struts/struts2-core",
          "pubdate": "2016-07-04",
          "solution": "Upgrade to versions 2.3.29, 2.5.1 or above.",
          "title": "Improper Input Validation",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2016-4465",
            "http://jvn.jp/en/jp/JVN12352818/index.html",
            "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000114",
            "https://bugzilla.redhat.com/show_bug.cgi?id=1348253",
            "https://struts.apache.org/docs/s2-041.html"
          ],
          "uuid": "4d8adeae-55e8-4570-b6af-191a1cbe9c5b"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.3.28.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.3.20:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.5:beta2:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.5:beta1:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.3.20.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.3.20.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.3.28:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.3.24.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.5:beta3:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.3.24.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:struts:2.3.24:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2016-4465"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.1 allows remote attackers to cause a denial of service via a null value for a URL field."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1348253",
              "refsource": "CONFIRM",
              "tags": [
                "Issue Tracking"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1348253"
            },
            {
              "name": "JVN#12352818",
              "refsource": "JVN",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://jvn.jp/en/jp/JVN12352818/index.html"
            },
            {
              "name": "JVNDB-2016-000114",
              "refsource": "JVNDB",
              "tags": [
                "VDB Entry",
                "Vendor Advisory"
              ],
              "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000114"
            },
            {
              "name": "https://struts.apache.org/docs/s2-041.html",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://struts.apache.org/docs/s2-041.html"
            },
            {
              "name": "http://www-01.ibm.com/support/docview.wss?uid=swg21987854",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21987854"
            },
            {
              "name": "91278",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/91278"
            },
            {
              "name": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": true,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 1.4
        }
      },
      "lastModifiedDate": "2017-08-09T01:29Z",
      "publishedDate": "2016-07-04T22:59Z"
    }
  }
}

FKIE_CVE-2016-4465

Vulnerability from fkie_nvd - Published: 2016-07-04 22:59 - Updated: 2025-04-12 10:46

Severity ?

5.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Summary

The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.1 allows remote attackers to cause a denial of service via a null value for a URL field.

References

URL	Tags
secalert@redhat.com	http://jvn.jp/en/jp/JVN12352818/index.html	Vendor Advisory
secalert@redhat.com	http://jvndb.jvn.jp/jvndb/JVNDB-2016-000114	VDB Entry, Vendor Advisory
secalert@redhat.com	http://www-01.ibm.com/support/docview.wss?uid=swg21987854	Third Party Advisory
secalert@redhat.com	http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
secalert@redhat.com	http://www.securityfocus.com/bid/91278
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=1348253	Issue Tracking
secalert@redhat.com	https://struts.apache.org/docs/s2-041.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://jvn.jp/en/jp/JVN12352818/index.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://jvndb.jvn.jp/jvndb/JVNDB-2016-000114	VDB Entry, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www-01.ibm.com/support/docview.wss?uid=swg21987854	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/91278
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=1348253	Issue Tracking
af854a3a-2127-422b-91ae-364da2661108	https://struts.apache.org/docs/s2-041.html	Vendor Advisory

Impacted products

Vendor	Product	Version
apache	struts	2.3.20
apache	struts	2.3.20.1
apache	struts	2.3.20.3
apache	struts	2.3.24
apache	struts	2.3.24.1
apache	struts	2.3.24.3
apache	struts	2.3.28
apache	struts	2.3.28.1
apache	struts	2.5
apache	struts	2.5
apache	struts	2.5
apache	struts	2.5

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apache:struts:2.3.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "22FF6282-0BCA-46EB-9648-6EE3EDA189F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.3.20.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D1467BC-9BC8-402D-A420-615CF9698648",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.3.20.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "880AEA69-3705-447D-80FF-60753248158F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.3.24:*:*:*:*:*:*:*",
              "matchCriteriaId": "524C5119-416D-413B-BF1D-29291E23FDB2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.3.24.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "45446B16-F531-4C6D-B889-A8A6622C70A2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.3.24.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "71823E13-1896-4EE4-A49C-CFFB717FFD80",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.3.28:*:*:*:*:*:*:*",
              "matchCriteriaId": "C778ADED-75B5-4AD3-8CDC-EFDFFAD5A742",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.3.28.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "067F6249-CC5A-4402-843C-06D5F9F77267",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "63CE1226-E0E6-4DC6-AC89-3FFDE6BD7B77",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.5:beta1:*:*:*:*:*:*",
              "matchCriteriaId": "E17D62B8-349B-4F30-8849-6912828802C3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.5:beta2:*:*:*:*:*:*",
              "matchCriteriaId": "D5E91133-D585-43F7-9093-94D735B3167E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:struts:2.5:beta3:*:*:*:*:*:*",
              "matchCriteriaId": "DD44FD72-ECE7-4E08-AD9E-5CE2C310C2C8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.1 allows remote attackers to cause a denial of service via a null value for a URL field."
    },
    {
      "lang": "es",
      "value": "La clase URLValidator en Apache Struts 2 2.3.20 hasta la versi\u00f3n 2.3.28.1 y 2.5.x en versiones anteriores a 2.5.1 permite a atacantes remotos provocar una denegaci\u00f3n de servicio a trav\u00e9s de un valor nulo para un campo URL."
    }
  ],
  "id": "CVE-2016-4465",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": true,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 5.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
          "version": "3.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2016-07-04T22:59:10.117",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://jvn.jp/en/jp/JVN12352818/index.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "VDB Entry",
        "Vendor Advisory"
      ],
      "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000114"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21987854"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/bid/91278"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1348253"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://struts.apache.org/docs/s2-041.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://jvn.jp/en/jp/JVN12352818/index.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "VDB Entry",
        "Vendor Advisory"
      ],
      "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000114"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21987854"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/91278"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1348253"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://struts.apache.org/docs/s2-041.html"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2019-AVI-403

Vulnerability from certfr_avis - Published: 2019-08-20 - Updated: 2019-08-20

De multiples vulnérabilités ont été découvertes dans Apache Struts. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Apache	Struts	Apache Struts versions antérieures à 2.5.17
	Apache	Struts	Apache Struts versions antérieures à 2.3.35

References

Title

Publication Time

GHSA-XG75-68X3-7P3Q

Vulnerability from github – Published: 2022-05-17 02:16 – Updated: 2024-01-04 20:22

Summary

Apache Struts vulnerable to possible DoS attack when using URLValidator

Details

The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.13 allows remote attackers to cause a denial of service via a null value for a URL field.

Severity ?

5.3 (Medium)


                  
                    CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Maven",
        "name": "org.apache.struts:struts2-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.3.20"
            },
            {
              "fixed": "2.3.29"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Maven",
        "name": "org.apache.struts:struts2-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.5.0"
            },
            {
              "fixed": "2.5.13"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2016-4465"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2022-11-03T22:48:20Z",
    "nvd_published_at": "2016-07-04T22:59:00Z",
    "severity": "MODERATE"
  },
  "details": "The URLValidator class in Apache Struts 2 2.3.20 through 2.3.28.1 and 2.5.x before 2.5.13 allows remote attackers to cause a denial of service via a null value for a URL field.",
  "id": "GHSA-xg75-68x3-7p3q",
  "modified": "2024-01-04T20:22:25Z",
  "published": "2022-05-17T02:16:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4465"
    },
    {
      "type": "WEB",
      "url": "https://github.com/apache/struts/commit/a0fdca138feec2c2e94eb75ca1f8b76678b4d152"
    },
    {
      "type": "WEB",
      "url": "https://github.com/apache/struts/commit/eccc31ebce5430f9e91b9684c63eaaf885e603f9"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1348253"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/apache/struts"
    },
    {
      "type": "WEB",
      "url": "https://struts.apache.org/docs/s2-041.html"
    },
    {
      "type": "WEB",
      "url": "http://jvn.jp/en/jp/JVN12352818/index.html"
    },
    {
      "type": "WEB",
      "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2016-000114"
    },
    {
      "type": "WEB",
      "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21987854"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Apache Struts vulnerable to possible DoS attack when using URLValidator"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2016-4465 (GCVE-0-2016-4465)

JVNDB-2016-000114

CNVD-2016-04089

GSD-2016-4465

FKIE_CVE-2016-4465

CERTFR-2019-AVI-403

Solution

GHSA-XG75-68X3-7P3Q

Tags

Sightings

Nomenclature