U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2012-0394

Change History

Modified Analysis by NIST 1/07/2021 2:00:00 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:apache:struts:2.0.0:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.1:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.2:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.3:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.4:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.5:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.6:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.7:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.8:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.9:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.10:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.11:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.11.1:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.11.2:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.12:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.13:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.0.14:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.1.0:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.1.1:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.1.2:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.1.3:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.1.4:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.1.5:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.1.6:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.1.8:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.1.8.1:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.2.1:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:2.2.1.1:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:* versions up to (including) 2.2.3
OR
     *cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:* versions from (including) 2.0.0 up to (including) 2.3.17
Changed Reference Type
http://archives.neohapsis.com/archives/bugtraq/2012-01/0031.html Exploit
http://archives.neohapsis.com/archives/bugtraq/2012-01/0031.html Broken Link
Changed Reference Type
http://struts.apache.org/2.x/docs/version-notes-2311.html No Types Assigned
http://struts.apache.org/2.x/docs/version-notes-2311.html Release Notes, Vendor Advisory
Changed Reference Type
http://www.exploit-db.com/exploits/18329 Exploit
http://www.exploit-db.com/exploits/18329 Exploit, Third Party Advisory, VDB Entry
Changed Reference Type
http://www.exploit-db.com/exploits/31434 No Types Assigned
http://www.exploit-db.com/exploits/31434 Exploit, Third Party Advisory, VDB Entry
Changed Reference Type
http://www.osvdb.org/78276 No Types Assigned
http://www.osvdb.org/78276 Broken Link
Changed Reference Type
https://www.sec-consult.com/files/20120104-0_Apache_Struts2_Multiple_Critical_Vulnerabilities.txt Exploit
https://www.sec-consult.com/files/20120104-0_Apache_Struts2_Multiple_Critical_Vulnerabilities.txt Broken Link