New Research Finds More Struts Vulnerabilities

Despite aggressive updating and patching, many organizations are still using versions of Apache Struts with known -- and new -- vulnerabilities.

Apache Struts continues to be a critical piece of software infrastructure for many organizations, and according to new research, it continues to be a deep well of vulnerabilities from which hackers can draw.
In a new report, Tim Mackey, principal security strategist at the Synopsys Cybersecurity Research Center, writes that the team investigated 115 separate Apache Struts releases and compared them with 57 security advisories covering 64 vulnerabilities. They found 61 additional Struts versions affected by at least one already disclosed vulnerability.
In addition, Mackey points out that an earlier report, the 2019 Open Source Security and Risk Analysis, showed that 43% of commercial software had vulnerabilities at least 10 years old — a reminder, he writes, that knowing about vulnerabilities is of little use if good patching and updating policies arent followed.
For more, read
here
.

Last News
▸ ArcSight prepares for future at user conference post HP acquisition. ◂ Discovered: 07/01/2025 Category: security	▸ Samsung Epic 4G: First To Use Media Hub ◂ Discovered: 07/01/2025 Category: security	▸ Many third-party software fails security tests ◂ Discovered: 07/01/2025 Category: security

**Cyber Security Categories**
Google Dorks Database	Exploits Vulnerability	Exploit Shellcodes

CVE List

Tools/Apps

News/Aarticles

Phishing Database

Deepfake Detection

Trends/Statistics & Live Infos

Tags:
New Research Finds More Struts Vulnerabilities