Apache Struts Unsupported Version Detection

Critical Nessus Plugin ID 117461


The remote host contains an unsupported version of Apache Struts.


According to its version, the installation of Apache Struts on
the remote host is no longer supported.

Lack of support implies that no new security patches for the product
will be released by the vendor. As a result, it is likely to contain
security vulnerabilities.


Upgrade to a version of Apache Struts that is currently supported.

See Also


Plugin Details

Severity: Critical

ID: 117461

File Name: struts_unsupported.nasl

Version: 1.2

Type: combined

Family: Misc.

Published: 2018/09/13

Modified: 2019/02/15

Dependencies: 73943, 99671, 122235, 11936

Risk Information

Risk Factor: Critical

CVSS Score Source: manual

CVSS Score Rationale: The product is no longer supported by vendor

CVSS v2.0

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS v3.0

Base Score: 10

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:apache:struts