Apache Struts 2 Remote Code Execution Vulnerability (CVE-2018-11776): Impact on RSA products

000036658

000036658

On August 22, 2018, Apache Software Foundation disclosed a vulnerability in Apache Struts 2 that could allow an attacker to execute arbitrary commands remotely on affected systems. For more information on this vulnerability, please review the Apache security advisory ( S2-057).

• Apache: https://cwiki.apache.org/confluence/display/WW/S2-057

RSA is aware of and investigating the impact of this vulnerability on our products. The following table contains the latest available impact information. The table will be updated as additional information becomes available.