Vulnerability Description
The fix issued for CVE-2020-17530 was incomplete. So from Apache Struts 2.0.0 to 2.5.29, still some of the tag’s attributes could perform a double evaluation if a developer applied forced OGNL evaluation by using the %{...} syntax. Using forced OGNL evaluation on untrusted user input can lead to a Remote Code Execution and security degradation.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Struts | >= 2.0.0, <= 2.5.29 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2022/04/12/6Mailing ListMitigationThird Party Advisory
- https://cwiki.apache.org/confluence/display/WW/S2-062MitigationPatchVendor Advisory
- https://security.netapp.com/advisory/ntap-20220420-0001/Third Party Advisory
- https://www.oracle.com/security-alerts/cpujul2022.html
- http://www.openwall.com/lists/oss-security/2022/04/12/6Mailing ListMitigationThird Party Advisory
- https://cwiki.apache.org/confluence/display/WW/S2-062MitigationPatchVendor Advisory
- https://security.netapp.com/advisory/ntap-20220420-0001/Third Party Advisory
- https://www.oracle.com/security-alerts/cpujul2022.html
FAQ
What is CVE-2021-31805?
CVE-2021-31805 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The fix issued for CVE-2020-17530 was incomplete. So from Apache Struts 2.0.0 to 2.5.29, still some of the tag’s attributes could perform a double evaluation if a developer applied forced OGNL evaluat...
How severe is CVE-2021-31805?
CVE-2021-31805 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-31805?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Struts.