CVEブラウザに戻る

CVE-2021-31805

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0960%

EPSS Percentile5.62th

Published2022年4月12日

Last Modified2024年11月21日

Vulnerability Description

The fix issued for CVE-2020-17530 was incomplete. So from Apache Struts 2.0.0 to 2.5.29, still some of the tag’s attributes could perform a double evaluation if a developer applied forced OGNL evaluation by using the %{...} syntax. Using forced OGNL evaluation on untrusted user input can lead to a Remote Code Execution and security degradation.

Affected Platforms (CPE)

📦

Apache

Struts

>= 2.0.0 and <= 2.5.29

References & Advisories

🔗 http://www.openwall.com/lists/oss-security/2022/04/12/6

🔗 https://cwiki.apache.org/confluence/display/WW/S2-062

🔗 https://security.netapp.com/advisory/ntap-20220420-0001/

🔗 https://www.oracle.com/security-alerts/cpujul2022.html

🔗 http://www.openwall.com/lists/oss-security/2022/04/12/6

🔗 https://cwiki.apache.org/confluence/display/WW/S2-062

🔗 https://security.netapp.com/advisory/ntap-20220420-0001/

🔗 https://www.oracle.com/security-alerts/cpujul2022.html

関連する脆弱性情報

CVE-2013-431610.0

Apache Struts 2.0.0 through 2.3.15.1 enables Dynamic Method Invocation by default, which has unknown impact and attack vectors.

CVE-2012-083810.0

Apache Struts 2 before 2.2.3.1 evaluates a string as an OGNL expression during the handling of a conversion error, which allows re...

CVE-2020-175309.8

Forced OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution. Affected software :...

CVE-2021-440779.8

Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulner...