Vulnerability Description
When a Multipart request is performed but some of the fields exceed the maxStringLength limit, the upload files will remain in struts.multipart.saveDir even if the request has been denied. Users are recommended to upgrade to versions Struts 2.5.32 or 6.1.2.2 or Struts 6.3.0.1 or greater, which fixe this issue.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Struts | >= 2.0.0, < 2.5.32 |
Related Weaknesses (CWE)
References
- https://lists.apache.org/thread/6wj530kh3ono8phr642y9sqkl67ys2ftMailing ListRelease Notes
- https://www.openwall.com/lists/oss-security/2023/12/09/1Mailing ListThird Party Advisory
- https://lists.apache.org/thread/6wj530kh3ono8phr642y9sqkl67ys2ftMailing ListRelease Notes
- https://security.netapp.com/advisory/ntap-20231013-0001/
- https://www.openwall.com/lists/oss-security/2023/12/09/1Mailing ListThird Party Advisory
FAQ
What is CVE-2023-41835?
CVE-2023-41835 is a vulnerability with a CVSS score of 7.5 (HIGH). When a Multipart request is performed but some of the fields exceed the maxStringLength limit, the upload files will remain in struts.multipart.saveDir even if the request has been denied. Users are...
How severe is CVE-2023-41835?
CVE-2023-41835 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-41835?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Struts.