Home

CVE-2017-5638

Description

The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote attackers to execute arbitrary commands via a crafted Content-Type, Content-Disposition, or Content-Length HTTP header, as exploited in the wild in March 2017 with a Content-Type header containing a #cmd= string.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
94.267

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities are affected in Oracle WebLogic Server 10.3.6.0.0Windows
Multiple vulnerabilities are affected in Oracle WebLogic Server 12.1.3.0.0Windows
Multiple vulnerabilities are affected in Oracle WebLogic Server 12.1.3.0Windows
Multiple vulnerabilities are affected in Oracle WebLogic Server 10.3.6.0Windows
Multiple vulnerabilities are affected in Oracle WebLogic Server 12.2.1.2Windows
Vulnerabilities CVE-2017-5638 are fixed in Apache-struts2-core 2.3.32Windows
Vulnerabilities CVE-2017-5638 are fixed in Apache-struts2-core 2.5.10.1Windows
Multiple vulnerabilities are affected in Oracle WebLogic Server 12.2.1.1Windows
Multiple vulnerabilities are affected in Oracle WebLogic Server 12.2.1.0Windows
Multiple vulnerabilities are affected in Oracle WebLogic Server 12.2.1.2.0Windows
Multiple Vulnerabilities are affected in Netapp Oncommand Balance 2.3Windows
Multiple Vulnerabilities are affected in Oracle WebLogic Server 12.2.1.1.0Windows
Vulnerabilities CVE-2017-5638 are fixed in Apache-structs2-core for Linux 2.3.32Linux
Vulnerabilities CVE-2017-5638 are fixed in Apache-structs2-core for Linux 2.5.10.1Linux
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products For Cisco Emergency ResponderNCM
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products For Cisco FinesseNCM
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products For Cisco MediaSenseNCM
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products For Cisco SocialMinerNCM
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products For Cisco Unified Contact Center ExpressNCM
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products For Cisco Unified Intelligence CenterNCM
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products For Cisco Unity ConnectionNCM
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products For Cisco Identity Services EngineNCM
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products For Cisco Unified Communications LicensingNCM
Apache Struts2 Jakarta Multipart Parser File Upload Code Execution Vulnerability Affecting Cisco Products For Cisco Hosted Collaboration Solution for Contact CenterNCM
Improper Handling of Exceptional Conditions Vulnerability (CVE-2017-5638)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-1706049Security Update for Cisco Emergency Responder 12.0(0.98000.50)
PATCH-1705887Security Update for Cisco Finesse 11.5(0.98000.126)
PATCH-1705879Security Update for Cisco MediaSense 11.5(1.10000.6)
PATCH-1704708Security Update for Cisco SocialMiner 12.0(0.99000.293)
PATCH-1706052Security Update for Cisco Unified Contact Center Express 11.6(1)
PATCH-1705886Security Update for Cisco Unified Intelligence Center 11.5(0.98000.126)
PATCH-1706048Security Update for Cisco Unity Connection 12.0(0.97000.184)
PATCH-1706002Security Update for Cisco Identity Services Engine 2.0(0.905)
PATCH-1706042Security Update for Cisco Unified Communications Licensing 11.5(1.12001.2)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234