⚠ Actively exploited
Added to CISA KEV on 2022-03-25. Federal agencies required to patch by 2022-04-15. Required action: Apply updates per vendor instructions..

CVE-2013-2251

CWE-74CWE-20Improper Input Validation12 documents10 sources
Severity
9.8CRITICAL
EPSS
94.3%
top 0.05%
CISA KEV
KEV
Added 2022-03-25
Due 2022-04-15
Exploit
Exploited in wild
Active exploitation observed
Affected products
4
Apache ArchivaApache StrutsFujitsu Interstage Business Process Manager Analytics+1 more
Timeline
PublishedJul 20
KEV addedMar 25
KEV dueApr 15
Latest updateMay 13
CISA Required Action: Apply updates per vendor instructions.

Description

Apache Struts 2.0.0 through 2.3.15 allows remote attackers to execute arbitrary OGNL expressions via a parameter with a crafted (1) action:, (2) redirect:, or (3) redirectAction: prefix.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages5 packages

NVDapache/struts2.0.02.3.15
NVDapache/archiva1.31.3.8+2
NVDoracle/siebel_apps_-_e-billing6.1, 6.1.1, 6.2+2

Patches

Patch: struts.apache.orgPatch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

4
OSV
Code injection in Apache Struts2022-05-13
GHSA
Code injection in Apache Struts2022-05-13
CVEList
CVE-2013-2251: Apache Struts 22013-07-18
VulnCheck
Apache Struts Improper Input Validation Vulnerability2013

💥Exploits & PoCs

4
Exploit-DB
Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution2020-10-20
Exploit-DB
Apache Struts2 2.0.0 < 2.3.15 - Prefixed Parameters OGNL Injection2014-01-14
Exploit-DB
Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution (Metasploit)2013-07-27
Nuclei
Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution

📋Vendor Advisories

2
CISA
Apache Struts Improper Input Validation Vulnerability2022-03-25
Cisco
Apache Struts 2 Command Execution Vulnerability in Multiple Cisco Products2013-10-23

💬Community

1
Bugzilla
CVE-2013-2251 Apache Struts 2 arbitrary OGNL code execution via crafted parameters2013-07-19
CVE-2013-2251 (CRITICAL CVSS 9.8) | Apache Struts 2.0.0 through 2.3.15 | cvebase.io