ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3
Sourceet/open
Fileemerging-web_specific_apps.rules
CreatedMarch 13, 2017
UpdatedApril 28, 2024
Classificationweb-application-attack
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Possible Apache Struts OGNL Expression Injection (CVE-2017-5638) M3"; flow:established,to_server ; http.header; header_lowercase; content:"content-type|3a 20 25 7b 28 23|"; nocase; fast_pattern; content:"multipart/form-data"; classtype:web-application-attack; sid:2024045; rev:5; metadata:affected_product Apache_Struts2, attack_target Web_Server, created_at 2017_03_13, deployment Datacenter, performance_impact Low, confidence Medium, signature_severity Major, tag CISA_KEV, updated_at 2024_04_28;)
Metadata
affected productApache_Struts2
attack targetWeb_Server
created at2017_03_13
deploymentDatacenter
performance impactLow
confidenceMedium
signature severityMajor
tagCISA_KEV
updated at2024_04_28
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!