Apache security advisory (AV24-708)

Serial number: AV24-708
Date: December 11, 2024

On November 26, 2024, Apache published a security advisory to address a critical vulnerability VulnerabilityA flaw or weakness in the design or implementation of an information system or its environment that could be exploited to adversely affect an organization's assets or operations. (CVE-2024-53677) in the following products:

Apache Struts – versions 2.0.0 to 2.3.37 (EOL)
Apache Struts – versions 2.5.0 to 2.5.33
Apache Struts – versions 6.0.0 to 6.3.0.2

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

Apache Security Bulletin S2-067
Apache Security Bulletins

Date modified:: 2024-12-11

Language selection

Search

Apache security advisory (AV24-708)