CVE-2010-1870
Apache Struts < 2.2.0 - Remote Command Execution
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
3
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The OGNL extensive expression evaluation capability in XWork in Struts 2.0.0 through 2.1.8.1, as used in Atlassian Fisheye, Crucible, and possibly other products, uses a permissive whitelist, which allows remote attackers to modify server-side context objects and bypass the "#" protection mechanism in ParameterInterceptors via the (1) #context, (2) #_memberAccess, (3) #root, (4) #this, (5) #_typeResolver, (6) #_classResolver, (7) #_traceEvaluations, (8) #_lastEvaluation, (9) #_keepLastEvaluation, and possibly other OGNL context variables, a different vulnerability than CVE-2008-6504.
La capacidad OGNL extensive expression evaluation en XWork de Struts v2.0.0 hasta v2.1.8.1, como el usado en Atlassian Fisheye, Crucible,y posiblemente otros productos, usa una lista blanca permisiva, la cual permite a atacantes remotos modificar los objetos del contexto del lado del servidor y evitar el mecanismo de protección "#" en ParameterInterceptors a través de (1) #context, (2) #_memberAccess, (3) #root, (4) #this, (5) #_typeResolver, (6) #_classResolver, (7) #_traceEvaluations, (8) #_lastEvaluation, (9) #_keepLastEvaluation, y posiblemente otras variables de contexto OGNL, una vulnerabilidad diferente de CVE-2008-6504.
Struts2/XWork suffers from a remote command execution vulnerability.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2010-05-10 CVE Reserved
- 2010-07-14 CVE Published
- 2010-07-14 First Exploit
- 2024-07-05 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (14)
| URL | Tag | Source |
|---|---|---|
| http://blog.o0o.nu/2010/07/cve-2010-1870-struts2xwork-remote.html | X_refsource_misc | |
| http://packetstormsecurity.com/files/159643/LISTSERV-Maestro-9.0-8-Remote-Code-Execution.html | X_refsource_misc |
|
| http://seclists.org/fulldisclosure/2010/Jul/183 | Mailing List |
|
| http://seclists.org/fulldisclosure/2020/Oct/23 | Mailing List |
|
| http://secunia.com/advisories/59110 | Third Party Advisory | |
| http://securityreason.com/securityalert/8345 | Third Party Advisory | |
| http://struts.apache.org/2.2.1/docs/s2-005.html | X_refsource_confirm | |
| http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140709-struts2 | X_refsource_confirm |
|
| http://www.osvdb.org/66280 | Vdb Entry | |
| http://www.securityfocus.com/bid/41592 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/17691 | 2011-08-19 | |
| https://www.exploit-db.com/exploits/14360 | 2010-07-14 | |
| http://www.exploit-db.com/exploits/14360 | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://confluence.atlassian.com/display/FISHEYE/FishEye+Security+Advisory+2010-06-16 | 2020-10-20 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.0 Search vendor "Apache" for product "Struts" and version "2.0.0" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.1 Search vendor "Apache" for product "Struts" and version "2.0.1" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.2 Search vendor "Apache" for product "Struts" and version "2.0.2" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.3 Search vendor "Apache" for product "Struts" and version "2.0.3" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.4 Search vendor "Apache" for product "Struts" and version "2.0.4" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.5 Search vendor "Apache" for product "Struts" and version "2.0.5" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.6 Search vendor "Apache" for product "Struts" and version "2.0.6" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.7 Search vendor "Apache" for product "Struts" and version "2.0.7" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.8 Search vendor "Apache" for product "Struts" and version "2.0.8" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.9 Search vendor "Apache" for product "Struts" and version "2.0.9" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.10 Search vendor "Apache" for product "Struts" and version "2.0.10" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.11 Search vendor "Apache" for product "Struts" and version "2.0.11" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.11.1 Search vendor "Apache" for product "Struts" and version "2.0.11.1" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.11.2 Search vendor "Apache" for product "Struts" and version "2.0.11.2" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.12 Search vendor "Apache" for product "Struts" and version "2.0.12" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.13 Search vendor "Apache" for product "Struts" and version "2.0.13" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.0.14 Search vendor "Apache" for product "Struts" and version "2.0.14" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.1.0 Search vendor "Apache" for product "Struts" and version "2.1.0" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.1.1 Search vendor "Apache" for product "Struts" and version "2.1.1" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.1.2 Search vendor "Apache" for product "Struts" and version "2.1.2" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.1.3 Search vendor "Apache" for product "Struts" and version "2.1.3" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.1.4 Search vendor "Apache" for product "Struts" and version "2.1.4" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.1.5 Search vendor "Apache" for product "Struts" and version "2.1.5" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.1.6 Search vendor "Apache" for product "Struts" and version "2.1.6" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.1.8 Search vendor "Apache" for product "Struts" and version "2.1.8" | - |
Affected
| ||||||
| Apache Search vendor "Apache" | Struts Search vendor "Apache" for product "Struts" | 2.1.8.1 Search vendor "Apache" for product "Struts" and version "2.1.8.1" | - |
Affected
| ||||||