cbcvebase.
CVE-2012-1592
published 2019-12-05

CVE-2012-1592: A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.

PriorityP272high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EXPLOIT
EPSS
28.55%
97.9th percentile
A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.

Affected

2 ranges
VendorProductVersion rangeFixed in
apachestruts
libstruts1.2-javalibstruts1.2-java

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability is triggered by uploading a malformed XSLT file via XSLTResult.java; monitor for unexpected XSLT file uploads to Struts2 applications
  • Attack chain requires two steps: (1) upload of an arbitrary file and (2) the attacker viewing/requesting that file to trigger execution — monitor for upload followed by immediate retrieval of the same file by an untrusted user
  • Scan host filesystems for struts2 JARs that may indicate a vulnerable deployment, particularly in Fuse Service Works 6.0.0 and Single Sign On 7.3.0+ source builds
  • ·Exploitation requires that the application makes an uploaded file from an untrusted user immediately available back to an untrusted user without sanitization — applications that properly validate uploads before serving them are not directly exploitable via this path
  • ·Struts2 is not actively compiled or shipped in Red Hat final products, but struts2-core JARs were included in source packages for Fuse Service Works 6.0.0 and Single Sign On 7.3.0+; customers who built artifacts from those source packages may be at risk

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.