National Vulnerability Database

National Vulnerability Database

NVD

Vulnerability Change Records for CVE-2017-9793

Change History

CVE Modified by Apache Software Foundation 9/27/2017 9:29:04 PM

Action Type Old Value New Value
Added Reference 

								
							
							
								
							
						
								
							
								
http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-9805-3889403.html [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Apache Software Foundation 8/12/2019 5:15:14 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Changed
						Description
						
							
							
								
							
								
The REST Plugin in Apache Struts 2.3.7 through 2.3.33 and 2.5 through 2.5.12 is using an outdated XStream library which is vulnerable and allow perform a DoS attack using malicious request with specially crafted XML payload.

								
							
							
								
							
						
								
							
								
The REST Plugin in Apache Struts 2.1.x, 2.3.7 through 2.3.33 and 2.5 through 2.5.12 is using an outdated XStream library which is vulnerable and allow perform a DoS attack using malicious request with specially crafted XML payload.

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Apache Software Foundation 9/21/2017 9:29:25 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
http://www.brocade.com/content/dam/common/documents/content-types/security-bulletin/brocade-security-advisory-2017-429.htm [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
http://www.securityfocus.com/bid/100611 [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
http://www.securitytracker.com/id/1039262 [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170907-struts2 [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Apache Software Foundation 6/30/2018 9:29:01 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://security.netapp.com/advisory/ntap-20180629-0001/ [No Types Assigned]