CISCO-SA-20180823-APACHE-STRUTS
A vulnerability in Apache Struts could allow an unauthenticated, remote attacker to execute arbitrary code on a targeted system. The vulnerability exists because the affected software insufficiently validates user-supplied input, allowing the use of results with no namespace value and the use of url tags with no value or action. In cases where upper actions or configurations also have no namespace or a wildcard namespace, an attacker could exploit this vulnerability by sending a request that submits malicious input to the affected application for processing. If successful, the attacker could execute arbitrary code in the security context of the affected application on the targeted system. The following Snort rules can be used to detect possible exploitation of this vulnerability: Snort SID 29639, 39190, 39191, and 47634 This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts"]
Exploit Intelligence
- Investigation of CVE-2018-11776 vulnerability that allows attackers to remotely execute code and gain control over Apache Struts-based applications. (github-poc-repo)
- Creating a vulnerable environment and the PoC (github-poc-repo)
- freshdemo/ApacheStruts-CVE-2018-11776 (github-poc-repo)
- Critical Remote Code Execution Vulnerability (CVE-2018-11776) Found in Apache Struts. (github-poc-repo)
- cve-2018-11776 (github-poc-repo)
- Spins up an isolated test environment for experimentation with Apache Struts vulnerability CVE-2018-11776. (github-poc-repo)
- sonpt-afk/CVE-2018-11776-FIS (github-poc-repo)
- CVE-2018-11776(S2-057) EXPLOIT CODE (github-poc-repo)
- PoC Script for the CVE-2018-11776 vuln (github-poc-repo)
- PoC Script for the CVE-2018-11776 vuln (github-poc)
…and 55 more exploits
Timeline
- Aug 23, 2018 CVE Published
- Sep 17, 2018 CVE Updated
- Oct 2, 2020 PoC Published
- Nov 6, 2020 PoC Published
- Sep 6, 2021 PoC Published
- Oct 9, 2024 PoC Published
- Dec 12, 2024 PoC Published
- Mar 28, 2025 PoC Published
- Sep 26, 2025 PoC Published
References
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180823-apache-struts advisory
- https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html url
- https://bst.cloudapps.cisco.com/bugsearch/bug/BUGID url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78903 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13989 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14030 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14044 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78905 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14052 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78906 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14042 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14049 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13986 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvk78902 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm21744 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13984 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13980 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm13979 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14043 url
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm14056 url
…and 4 more