College of Engineering |

DECS

Security researchers have discovered a zero-day vulnerability in the popular Apache Struts web application framework. 

So, if you're running an Apache Struts Web applications, you should look into updating your software. Apache has released that versions 2.3.32/ 2.5.10.1 or later are not vulnerable. You should upgrade earlier versions to mitigate the issue. If you need assisting in determining if you need to upgrade, please contact the DECS Support Office at 3-8891 or at support@egr.msu.edu.

Keywords
Security category