search cancel

Apache Struts Vulnerability

book

Article ID: 113742

calendar_today

Updated On:

Products

CA Service Operations Insight (SOI)

Issue/Introduction

Vulnerability was detected on SOI servers that affect Apache Struts versions 2.3.x. We are using 4.0 SOI version. CVE number is CVE-2018-11776-Critical

What version of Struts SOI has? Is it affected by CVE-2018-11776?

Environment

SOI 4.0
Apache Tomcat 7.0.62
Apache Struts 1.0.2

Resolution

 CVE-2018-11776 is for Struts version 2.x, it can't affect the Struts version SOI has which is 1.0.2