← Back to CVE List
CVE-2017-9791
Published:
2017-07-10T16:29Z
Last Modified:
2025-04-03T15:52Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
The Struts 1 plugin in Apache Struts 2.1.x and 2.3.x might allow remote code execution via a malicious field value passed in a raw message to the ActionMessage. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt