CVE-2019-0233

Description

An access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when performing a file upload.

Affected packages (1)

• Maven/org.apache.struts:struts2-core>= 2.0.0, < 2.5.22

CVSS scores

References (6)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2019-0233
• WEBhttps://cwiki.apache.org/confluence/display/ww/s2-060
• WEBhttps://launchpad.support.sap.com/#/notes/2982840
• WEBhttps://www.oracle.com/security-alerts/cpuApr2021.html
• WEBhttps://www.oracle.com/security-alerts/cpujan2021.html
• WEBhttps://www.oracle.com/security-alerts/cpuoct2021.html