CVE-2018-11776

KEV
Published: Ago 22, 2018 Last Modified: Ott 27, 2025
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 8,1
Source: [email protected]
Attack Vector: network
Attack Complexity: high
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
HIGH 9,3
Source: [email protected]
Access Vector: network
Access Complexity: medium
Authentication: none
Confidentiality: complete
Integrity: complete
Availability: complete

Description

AI Translation Available

Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time, its upper package have no or wildcard namespace and similar to results, same possibility when using url tag which doesn't have value and action set and in same time, its upper package have no or wildcard namespace.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,9443
Percentile
1,0th
Updated

EPSS Score Trend (Last 91 Days)

Exploit

Apache Struts 2.3 < 2.3.34 / 2.5 < …

Remote

Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (1)

Author: Mazin Ahmed Published:
View Exploit Code →
Exploit

Apache Struts 2.3 < 2.3.34 / 2.5 < …

Apache Struts 2.3 < 2.3.34 / 2.5 < 2.5.16 - Remote Code Execution (2)

Author: hook-s3c Published:
View Exploit Code →
Exploit

Apache Struts 2 - Namespace Redirect OGNL Injection …

Verified Remote

Apache Struts 2 - Namespace Redirect OGNL Injection (Metasploit)

Author: Metasploit Published: Status: Verified
View Exploit Code →
Application

Active Iq Unified Manager by Netapp

Product Information
Vendor Netapp
Product Active Iq Unified Manager
Version Range Affected
From 9.5 (inclusive)
cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Struts by Apache

Product Information
Vendor Apache
Product Struts
Version Range Affected
From 2.5.0 (inclusive)
To 2.5.17 (exclusive)
cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Communications Policy Management by Oracle

Product Information
Vendor Oracle
Product Communications Policy Management
Version Range Affected
To 12.5.0 (exclusive)
cpe:2.3:a:oracle:communications_policy_management:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Mysql Enterprise Monitor by Oracle

Product Information
Vendor Oracle
Product Mysql Enterprise Monitor
Version Range Affected
From 8.0.0 (inclusive)
To 8.0.2.8191 (inclusive)
cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Oncommand Workflow Automation by Netapp

Product Information
Vendor Netapp
Product Oncommand Workflow Automation
Version -
cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Struts by Apache

Product Information
Vendor Apache
Product Struts
Version Range Affected
From 2.0.4 (inclusive)
To 2.3.35 (exclusive)
cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Enterprise Manager Base Platform by Oracle

Product Information
Vendor Oracle
Product Enterprise Manager Base Platform
Version 13.3.0.0
cpe:2.3:a:oracle:enterprise_manager_base_platform:13.3.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Mysql Enterprise Monitor by Oracle

Product Information
Vendor Oracle
Product Mysql Enterprise Monitor
Version Range Affected
To 3.4.9.4237 (inclusive)
cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Active Iq Unified Manager by Netapp

Product Information
Vendor Netapp
Product Active Iq Unified Manager
Version Range Affected
From 7.3 (inclusive)
cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Snapcenter by Netapp

Product Information
Vendor Netapp
Product Snapcenter
Version -
cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Enterprise Manager Base Platform by Oracle

Product Information
Vendor Oracle
Product Enterprise Manager Base Platform
Version 13.4.0.0
cpe:2.3:a:oracle:enterprise_manager_base_platform:13.4.0.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Mysql Enterprise Monitor by Oracle

Product Information
Vendor Oracle
Product Mysql Enterprise Monitor
Version Range Affected
From 4.0.0 (inclusive)
To 4.0.6.5281 (inclusive)
cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application

Oncommand Insight by Netapp

Product Information
Vendor Netapp
Product Oncommand Insight
Version -
cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.cisa.gov/known-exploited-vulnerabilities-catalo…
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018…
http://packetstormsecurity.com/files/172830/Apache-Struts-R…
http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution…
https://cwiki.apache.org/confluence/display/WW/S2-057
https://cwiki.apache.org/confluence/display/WW/S2-057
https://github.com/hook-s3c/CVE-2018-11776-Python-PoC
https://github.com/hook-s3c/CVE-2018-11776-Python-PoC
https://lgtm.com/blog/apache_struts_CVE-2018-11776
https://lgtm.com/blog/apache_struts_CVE-2018-11776
https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7…
https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc…
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-…
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012
https://security.netapp.com/advisory/ntap-20180822-0001/
https://security.netapp.com/advisory/ntap-20180822-0001/
https://security.netapp.com/advisory/ntap-20181018-0002/
https://security.netapp.com/advisory/ntap-20181018-0002/
https://www.exploit-db.com/exploits/45260/
https://www.exploit-db.com/exploits/45260/
https://www.exploit-db.com/exploits/45262/
https://www.exploit-db.com/exploits/45262/
https://www.exploit-db.com/exploits/45367/
https://www.exploit-db.com/exploits/45367/
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/technetwork/security-advisory/cpujan…
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-00…
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt
http://www.oracle.com/technetwork/security-advisory/alert-c…
http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-507278…
http://www.oracle.com/technetwork/security-advisory/cpuoct2…
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
http://www.securityfocus.com/bid/105125
http://www.securityfocus.com/bid/105125
http://www.securitytracker.com/id/1041547
http://www.securitytracker.com/id/1041547
http://www.securitytracker.com/id/1041888
http://www.securitytracker.com/id/1041888
http://packetstormsecurity.com/files/172830/Apache-Struts-R…
http://packetstormsecurity.com/files/172830/Apache-Struts-Remote-Code-Execution…
https://cwiki.apache.org/confluence/display/WW/S2-057
https://cwiki.apache.org/confluence/display/WW/S2-057
https://github.com/hook-s3c/CVE-2018-11776-Python-PoC
https://github.com/hook-s3c/CVE-2018-11776-Python-PoC
https://lgtm.com/blog/apache_struts_CVE-2018-11776
https://lgtm.com/blog/apache_struts_CVE-2018-11776
https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7…
https://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc…
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-…
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0012
https://security.netapp.com/advisory/ntap-20180822-0001/
https://security.netapp.com/advisory/ntap-20180822-0001/
https://security.netapp.com/advisory/ntap-20181018-0002/
https://security.netapp.com/advisory/ntap-20181018-0002/
https://www.exploit-db.com/exploits/45260/
https://www.exploit-db.com/exploits/45260/
https://www.exploit-db.com/exploits/45262/
https://www.exploit-db.com/exploits/45262/
https://www.exploit-db.com/exploits/45367/
https://www.exploit-db.com/exploits/45367/
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/security-alerts/cpujul2020.html
https://www.oracle.com/technetwork/security-advisory/cpujan…
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-00…
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-005.txt
http://www.oracle.com/technetwork/security-advisory/alert-c…
http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-11776-507278…
http://www.oracle.com/technetwork/security-advisory/cpuoct2…
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
http://www.securityfocus.com/bid/105125
http://www.securityfocus.com/bid/105125
http://www.securitytracker.com/id/1041547
http://www.securitytracker.com/id/1041547
http://www.securitytracker.com/id/1041888
http://www.securitytracker.com/id/1041888