CyberSec.Space Logo
返回 CVE 浏览器

CVE-2020-17530

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score83.0710%
EPSS Percentile85.96th
Published2020年12月11日
Last Modified2025年10月27日

Vulnerability Description

Forced OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution. Affected software : Apache Struts 2.0.0 - Struts 2.5.25.

Affected Platforms (CPE)

📦
Apache

Struts

>= 2.0.0 and < 2.5.30
📦
Oracle

Business Intelligence

= 12.2.1.3.0
📦
Oracle

Business Intelligence

= 12.2.1.4.0
📦
Oracle

Communications Diameter Intelligence Hub

= 8.0.0
📦
Oracle

Communications Diameter Intelligence Hub

= 8.1.0
📦
Oracle

Communications Diameter Intelligence Hub

= 8.2.0
📦
Oracle

Communications Diameter Intelligence Hub

= 8.2.3
📦
Oracle

Communications Policy Management

= 12.5.0
📦
Oracle

Communications Pricing Design Center

= 12.0.0.3.0
📦
Oracle

Financial Services Data Integration Hub

= 8.0.3
📦
Oracle

Financial Services Data Integration Hub

= 8.0.6
📦
Oracle

Hospitality Opera 5

= 5.6
📦
Oracle

Mysql Enterprise Monitor

= 8.0.23

References & Advisories

🔗 http://jvn.jp/en/jp/JVN43969166/index.html
🔗 http://packetstormsecurity.com/files/160721/Apache-Struts-2-Forced-Multi-OGNL-Evaluation.html
🔗 http://www.openwall.com/lists/oss-security/2022/04/12/6
🔗 https://cwiki.apache.org/confluence/display/WW/S2-061
🔗 https://security.netapp.com/advisory/ntap-20210115-0005/
🔗 https://www.oracle.com//security-alerts/cpujul2021.html
🔗 https://www.oracle.com/security-alerts/cpuApr2021.html
🔗 https://www.oracle.com/security-alerts/cpuapr2022.html

相关漏洞威胁

CVE-2013-431610.0

Apache Struts 2.0.0 through 2.3.15.1 enables Dynamic Method Invocation by default, which has unknown impact and attack vectors.

CVE-2012-083810.0

Apache Struts 2 before 2.2.3.1 evaluates a string as an OGNL expression during the handling of a conversion error, which allows re...

CVE-2021-440779.8

Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulner...

CVE-2021-318059.8

The fix issued for CVE-2020-17530 was incomplete. So from Apache Struts 2.0.0 to 2.5.29, still some of the tag’s attributes could ...