CVE-2013-2251

Published Jul 20, 2013

Last updated 8 days ago

Exploit known CVSS critical 9.8

Overview

Description: Apache Struts 2.0.0 through 2.3.15 allows remote attackers to execute arbitrary OGNL expressions via a parameter with a crafted (1) action:, (2) redirect:, or (3) redirectAction: prefix.
Source: secalert@redhat.com
NVD status: Analyzed
Products: archiva, struts, interstage_business_process_manager_analytics, siebel_apps_-_e-billing

Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

CVSS 2.0

Type: Primary
Base score: 9.3
Impact score: 10
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:C/I:C/A:C

Known exploits

Data from CISA

Vulnerability name: Apache Struts Improper Input Validation Vulnerability
Exploit added on: Mar 25, 2022
Exploit action due: Apr 15, 2022
Required action: Apply updates per vendor instructions.

Weaknesses

nvd@nist.gov: CWE-74
134c704f-9b21-4f2e-91b3-4a467353bcc0: CWE-74

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apache:archiva:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "3A10FB76-761D-4411-B6A8-B1AD5C133071",
            "versionEndExcluding": "1.3.8",
            "versionStartIncluding": "1.3",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:apache:archiva:1.2:-:*:*:*:*:*:*",
            "matchCriteriaId": "F0E0751C-E0BD-4C33-A541-C6FC67CE6663",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:apache:archiva:1.2.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "CCCF9A1C-7091-4D72-8AFC-5373F45FF7D5",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "61C63F76-5AFE-4D2F-B81C-D3476C165227",
            "versionEndIncluding": "2.3.15",
            "versionStartIncluding": "2.0.0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_business_process_manager_analytics:12.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "6D24308C-EEFB-477D-A88C-95E76CAC8AD7",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "E3527F41-A6ED-437D-9833-458A2C60C2A3",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "32623D48-7000-4C7D-823F-7D2A9841D88C",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "8D0C7AB6-1B62-49E3-99F8-53DD9329264E",
            "versionEndIncluding": "6.10",
            "versionStartIncluding": "5.0",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_business_process_manager_analytics:12.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "2825C5B3-6495-43FE-9D87-750C8B9B25EC",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "E3527F41-A6ED-437D-9833-458A2C60C2A3",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "32623D48-7000-4C7D-823F-7D2A9841D88C",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:*",
            "matchCriteriaId": "8E8C192B-8044-4BF9-9F1F-57371FC0E8FD",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "8D0C7AB6-1B62-49E3-99F8-53DD9329264E",
            "versionEndIncluding": "6.10",
            "versionStartIncluding": "5.0",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:siebel_apps_-_e-billing:6.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "109A2A5D-D631-472F-AA80-2E1D707943F5",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:siebel_apps_-_e-billing:6.1.1:*:*:*:*:*:*:*",
            "matchCriteriaId": "51D5BAC9-E5B1-4A19-8B87-0CA2FA046D27",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:a:oracle:siebel_apps_-_e-billing:6.2:*:*:*:*:*:*:*",
            "matchCriteriaId": "5F0DBE55-667B-45EF-8C3A-9C7AA33ADDE6",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Known exploits

Weaknesses

Social media

Configurations

Related CVEs

References