CVE-2020-17530: Apache Struts Remote Code Execution Vulnerability. Forced
Apache Struts Remote Code Execution Vulnerability. Forced Object-Graph Navigation Language (OGNL) evaluation in Apache Struts, when evaluated on raw user input in tag attributes, can lead to remote code execution.
- CISA KEV-listed (remediation due 2022-05-03)
- EPSS 94.4% (100.0% percentile)