CVE-2012-4387 in Strutsinfo

Summary

Apache Struts 2.0.0 through 2.3.4 allows remote attackers to cause a denial of service (CPU consumption) via a long parameter name, which is processed as an OGNL expression.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

08/21/2012

Disclosure

09/05/2012

Moderation

VulDB entry created

Entries

VDB-62035 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

7.1

EPSS

0.07916

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-4387
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-4387
CVE Details	https://www.cvedetails.com/cve/CVE-2012-4387/

◂ Previous Overview Next ▸