The fix issued for CVE-2020-17530 was incomplete. So from Apache Struts 2.0.0 to 2.5.29, still some of the tag’s attributes could perform a double evaluation if a developer applied forced OGNL evaluation by using the %{...} syntax. Using forced OGNL evaluation on untrusted user input can lead to a Remote Code Execution and security degradation.
References
| Link | Resource |
|---|---|
| http://www.openwall.com/lists/oss-security/2022/04/12/6 | Mailing List Mitigation Third Party Advisory |
| https://cwiki.apache.org/confluence/display/WW/S2-062 | Mitigation Patch Vendor Advisory |
| https://security.netapp.com/advisory/ntap-20220420-0001/ | Third Party Advisory |
| https://www.oracle.com/security-alerts/cpujul2022.html | |
| http://www.openwall.com/lists/oss-security/2022/04/12/6 | Mailing List Mitigation Third Party Advisory |
| https://cwiki.apache.org/confluence/display/WW/S2-062 | Mitigation Patch Vendor Advisory |
| https://security.netapp.com/advisory/ntap-20220420-0001/ | Third Party Advisory |
| https://www.oracle.com/security-alerts/cpujul2022.html |
Configurations
History
21 Nov 2024, 06:06
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://www.openwall.com/lists/oss-security/2022/04/12/6 - Mailing List, Mitigation, Third Party Advisory | |
| References | () https://cwiki.apache.org/confluence/display/WW/S2-062 - Mitigation, Patch, Vendor Advisory | |
| References | () https://security.netapp.com/advisory/ntap-20220420-0001/ - Third Party Advisory | |
| References | () https://www.oracle.com/security-alerts/cpujul2022.html - |
Information
Published : 2022-04-12 16:15
Updated : 2024-11-21 06:06
NVD link : CVE-2021-31805
Mitre link : CVE-2021-31805
CVE.ORG link : CVE-2021-31805
JSON object : View
Products Affected
apache
- struts
CWE
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')