Dave Ferguson

New detection for CVE-2017-9805

Discussion created by Dave Ferguson Employee on Sep 19, 2017

Hi everyone,


Just letting you know that a new detection in WAS has been released for CVE-2017-9805.  This CVE is for a nasty vulnerability in Apache Struts (yes, another one) that occurs when the Struts REST plugin is installed and enabled.  You can read the specifics about this flaw and how to remediate it in Apache Security Bulletin S2-052.


QID 150188 was added for this detection in WAS and it has a severity of "5".  Unless you have 100% confidence that you're not exposed, make sure to scan with an option profile that has this QID enabled.  Note that this QID will automatically be included if you're using "Complete" detection scope.