VMware response to namespace remote code execution via Apache Struts (CVE-2018-11776)
Article ID: 328936
Updated On:
Products
VMware vCenter Server
Issue/Introduction
The VMware Security Engineering, Communications, and Response group (vSECR) has investigated the impact CVE-2018-11776 may have on VMware products and services.
Resolution
VMware products and SaaS offerings that utilize Apache Struts are unaffected by the known attack vectors of CVE-2018-11776.
Regardless, Apache Struts will be updated in our products and SaaS offerings as a precautionary measure.
Regardless, Apache Struts will be updated in our products and SaaS offerings as a precautionary measure.
Feedback
Yes
No
Powered by
