CVE-2023-34149
- Source
- https://cve.org/CVERecord?id=CVE-2023-34149
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-34149.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-34149
- Aliases
- Published
- 2023-06-14T08:15:09.450Z
- Modified
- 2026-04-11T12:45:18.861744Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Allocation of Resources Without Limits or Throttling vulnerability in Apache Software Foundation Apache Struts.This issue affects Apache Struts: through 2.5.30, through 6.1.2.
Upgrade to Struts 2.5.31 or 6.1.2.1 or greater.
- References
Affected packages
Git / github.com/apache/struts
Affected ranges
- Type
- GIT
- Repo
- https://github.com/apache/struts
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedIntroducedFixed
- Database specific
{ "source": "CPE_FIELD", "extracted_events": [ { "introduced": "0" }, { "fixed": "2.5.31" }, { "introduced": "6.0.0" }, { "fixed": "6.1.2.1" } ], "cpe": "cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*" }
Affected versions
Other
STRUTS_2_5_10
STRUTS_2_5_11
STRUTS_2_5_12
STRUTS_2_5_13
STRUTS_2_5_14
STRUTS_2_5_14_1
STRUTS_2_5_15
STRUTS_2_5_16
STRUTS_2_5_17
STRUTS_2_5_18
STRUTS_2_5_19
STRUTS_2_5_20
STRUTS_2_5_21
STRUTS_2_5_22
STRUTS_2_5_23
STRUTS_2_5_24
STRUTS_2_5_25
STRUTS_2_5_26
STRUTS_2_5_27
STRUTS_2_5_28
STRUTS_2_5_28_1
STRUTS_2_5_28_2
STRUTS_2_5_28_3
STRUTS_2_5_29
STRUTS_2_5_3
STRUTS_2_5_30
STRUTS_2_5_4
STRUTS_2_5_5
STRUTS_2_5_6
STRUTS_2_5_7
STRUTS_2_5_8
STRUTS_2_5_9
STRUTS_2_5_BETA1
STRUTS_2_5_BETA2
STRUTS_6_0_0
STRUTS_6_0_1
STRUTS_6_0_2
STRUTS_6_0_3
STRUTS_6_1_0
STRUTS_6_1_1
STRUTS_6_1_2