struts-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Rayne Anderson" <ray...@us.ibm.com>
Subject CVE-2019-0233 is Struts v1 vulnerable?
Date Fri, 21 Aug 2020 09:30:27 GMT
I know that Apache Struts File upload CVE-2019-0233 applies to Struts v2. 
Does the CVE apply to Struts v1.3.8?

If no one knows the answer I can find no explicit details of how to test 
for the vulnerability or what the code changes where made in Struts 2. How 
do I obtain this information?

I have tried googling, searching GitHub issues, etc.

Regards, Rayne

IBM Watson Financial Services
10925 David Taylor Drive
Charlotte, NC 28262-1040, US
MG82/202
(704) 501-0331



Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message