CNNVD-202507-3791 Information

CNNVD ID

CNNVD-202507-3791

Related CVE

CVE-2025-54656

• CNNVD Published: 2025-07-30

Description (Chinese)

Apache Struts Extras 2是美国阿帕奇（Apache）基金会的一个Apache Struts 2框架的扩展。 Apache Struts Extras 2存在安全漏洞，该漏洞源于使用LookupDispatchAction时可能将不受信任的输入打印到日志中。

Description (English)

Apache Struts Express 2 is an extension of the Apache Struts 2 framework of the Apache Foundation. There is a security loophole in Apache Struts Express 2, which stems from the possibility that untrusted input will be printed in the log using the Lookup Dispactaction.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

阿帕奇

Published

2025-07-30

Last Modified

2026-02-24

References

https://lists.apache.org/thread/so5cn07j2zn9vlf1xnfqp630wts719rr https://access.redhat.com/security/cve/cve-2025-54656

Patch

https://struts.apache.org/download.cgi#struts703