VDB
RHSA-2014%3A0500
RHSA-2014%3A0500
PUBLISHED
Updated struts packages that fix one security issue are now available for Red Hat Network Satellite 5.4 and 5.5, and Red Hat Satellite 5.6. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| struts | ||
| Red Hat Satellite 5.5 (RHEL v.6) | ||
| Red Hat Satellite 5.6 (RHEL v.6) | ||
| Red Hat Satellite 5.4 (RHEL v.6) |
Exploit Intelligence
- aenlr/strutt-cve-2014-0114 (github-poc)
- struts1 CVE-2014-0114 classLoader manipulation vulnerability patch (github-poc)
- A request parameter filter solution for Struts 1 CVE-2014-0114 based on the work of Alvaro Munoz and the HP Fortify team (github-poc)
- https://access.redhat.com/errata/RHSA-2014:0500 (circl)
- https://access.redhat.com/security/updates/classification/#important (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=1091938 (circl)
- https://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0500.json (circl)
- security.xml (github-poc)
- security.xml (github-poc)
- security.xml (github-poc)
…and 6 more exploits
Timeline
- May 14, 2014 CVE Published
- Jan 28, 2026 CVE Updated
- Apr 16, 2026 Distribution Patch
- Apr 16, 2026 Distribution Patch
- Apr 16, 2026 Security Advisory
- Apr 29, 2026 Security Advisory