Apache Struts CVE-2017-9791 Remote Code Execution Vulnerability

Description: The Struts 1 plugin in Apache Struts 2.3.x might allow remote code execution via a malicious field value passed in a raw message to the ActionMessage.

Impact:  Successfully exploiting this issue may allow an attacker to execute arbitrary code in the context of the affected application.

Mitigation: Updates are available. Please check specific vendor advisory for more information.

Reference URL’s: