Arbitrary File Execution Vulnerability in Apache Struts2

Arbitrary File Execution Vulnerability in Apache Struts2

CVE-2012-1592 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.

Learn more about our Cis Benchmark Audit For Apache Http Server.