CVE-2016-3093

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2016-3093

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-3093.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2016-3093

Aliases

GHSA-383p-xqxx-rrmp

Published

2016-06-07T18:59:03Z

Modified

2024-10-12T01:51:20.333867Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator

Summary

[none]

Details

Apache Struts 2.0.0 through 2.3.24.1 does not properly cache method references when used with OGNL before 3.0.12, which allows remote attackers to cause a denial of service (block access to a web site) via unspecified vectors.

References

Affected packages

Git / github.com/apache/struts

Affected ranges

Type: GIT
Repo: https://github.com/apache/struts
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

0320310406f6b11cfd235d7a9b866cf1de483a1e

Last affected

28297863aee4d747638ce5b6f22262ac6a118ae0

Last affected

28c17a1b779635a3f3af39169224ea335a0379e2

Last affected

2a4ea6dce4e2d622a57480c1bc337f46315fde96

Last affected

2afda2ecc45730f5c0fc1f88c5d8919fb34d1462

Last affected

2bbc0452601e9816eabcffae0775f9549a651e4c

Last affected

2c0a197cea8fdc7d8cda5eeaa15a1c76507ac0a5

Last affected

3565f4d4f5c4c85a1ffab9e6169c86527aa6f4c7

Last affected

3f3776e7dcf106fe05041c743ea32c779e595197

Last affected

402374de33146e1c0401a247e0779e290cb0c078

Last affected

4b5f5619ddeda22f7f358431f604df580f1e61a1

Last affected

4b744ef87b9bd8ebff43675259df3ae650c9585e

Last affected

591347a498b358112cf478a3135107eae39d6e43

Last affected

6246b8e12eb5abee95916b948a7a97e4d736f10b

Last affected

645d06e11668b66204db10b5628685650333c5c1

Last affected

676a011b4f4d211e167465f3ffb03894c8f60334

Last affected

6a39976815adf55ada5c4e246d57ec13d9a5ec99

Last affected

6bf54d0b555cf64d46243054a1a8f57356b38f2b

Last affected

6cddee6fc539429544b28a96361a8af7a0691108

Last affected

6fa6f1014b309a96755e94d13563052055402701

Last affected

77cd231b589249b07f36e29061970070ecdd50f3

Last affected

7a9863169f7d981be0d2d57437974ae2cc0c8bd3

Last affected

7d7d3fc42b013f0983a16473b10ed24efb988e0e

Last affected

7dd83dff485d324980f3d22c726cfd969ecf41f8

Last affected

8135547c7a53364c17a93ba0a38f0463f0315ac5

Last affected

8931ac19ea504a167f4d0c8e57ccc8f7f09f4135

Last affected

925741ad1e8e48c7a6d687fe02d3fdb6386eb64c

Last affected

9df00b0a864fac2e763b7c26ba99af057202f0f3

Last affected

a614104a485c8b1a8d16d51511b50d922f00ab3f

Last affected

a72c1f4262a57bfe2819c6def81620d02d7867fb

Last affected

a9974eec5689a7113a6fb1e2096252f0935064dd

Last affected

b2fe62824eebd213625d23378b5307dcb1b82c77

Last affected

b3f712eb1b6b7d38b6f3dce6ee63147f0f96c259

Last affected

b8cadf565addce57581d13e9a8011eec6f42b0f4

Last affected

bbbf43ec59e7bef3b07e9065dc9784c18a95d58b

Last affected

bc6094eece7dfa65e7439cd018d58e85c5d41e47

Last affected

c80cb8458966e10d88a192b5ce68e47aee0e944a

Last affected

cb580fe614d5ff73776c34e39a93aae2ad557757

Last affected

daa62ed42adee485f30f2e8f43893900b5cd64e9

Last affected

de154978ca69a59079024dc6468eedd261293bff

Last affected

df365f17ea11e319302f648e86da3188ce1c5656

Last affected

e03ff728618f5bf551083fc3a52d43c07434bbc9

Last affected

e372ca3d17ba24778cf57e502ba85bc75b613f2c

Last affected

e5009a34202777b53c5dc36e020d0033aa8be027

Last affected

e893492adcacc5b4f09f378fe1d8f80de1814038

Last affected

ea055ccb9d7dde6a55a0173e1ecff023fb402334

Last affected

ef3c3ece89c6723340c9bc9271e3d2130378afad

Last affected

f0c159d871ee741e0cc74fe858cc7be79841078c

Last affected

f15f28a1766fe991de85c8cd089b102f77915319

Last affected

f187d90a12dd4b5c22a11d7ce7b6549f29516ff8

Last affected

f633bb8270ea52b8d168ade14b8721d8739ceab1

Last affected

f9d681cc97a175676786ddebed6b5924187e5ae3

Last affected

fc3df96990bafdecc6f3a89cf7a4dcf15066c687

Last affected

fd206c1386cc113e3f5b52fbc5b2f15a458b31b4

Last affected

fe62eb03471666cb871c1d5969b98dc79d578d2d

Type: GIT
Repo: https://github.com/jkuhnert/ognl
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

99de23f7647d790bfd8314e3f0576e4166d80a67

Affected versions

3.*

3.0

3.0.1

Other

OGNL_3_0_10

OGNL_3_0_11

OGNL_3_0_3

OGNL_3_0_4

OGNL_3_0_5

OGNL_3_0_6

OGNL_3_0_7

OGNL_3_0_8

OGNL_3_0_9

STRUTS_2_2_1

STRUTS_2_3_14

STRUTS_2_3_16_1

STRUTS_2_3_16_2

STRUTS_2_3_16_3

STRUTS_2_3_17

STRUTS_2_3_19

STRUTS_2_3_20