Allocation of Resources Without Limits or Throttling vulnerability in Apache Software Foundation Apache Struts.This issue affects Apache Struts: through 2.5.30, through 6.1.2.
Upgrade to Struts 2.5.31 or 6.1.2.1 or greater.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2023/06/14/2 | Mailing List |
https://cwiki.apache.org/confluence/display/WW/S2-063 | Vendor Advisory |
https://security.netapp.com/advisory/ntap-20230706-0005/ |
Configurations
Configuration 1 (hide)
|
History
06 Jul 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | (MISC) https://cwiki.apache.org/confluence/display/WW/S2-063 - Vendor Advisory | |
References | (MISC) http://www.openwall.com/lists/oss-security/2023/06/14/2 - Mailing List | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
CPE | cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:* |
14 Jun 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
14 Jun 2023, 08:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-06-14 08:15
Updated : 2024-02-04 23:37
NVD link : CVE-2023-34149
Mitre link : CVE-2023-34149
CVE.ORG link : CVE-2023-34149
JSON object : View
Products Affected
apache
- struts
CWE
CWE-770
Allocation of Resources Without Limits or Throttling