Apache Struts CVE-2016-4431 Security Bypass Vulnerability

Bugtraq ID: 91284
Class: Design Error
CVE: CVE-2016-4431
Remote: Yes
Local: No
Published: Jun 17 2016 12:00AM
Updated: Oct 26 2016 01:16AM
Credit: Takeshi Terada.
Vulnerable: IBM Storwize V7000 0
IBM Storwize V5000 -
IBM Storwize V3700 -
IBM Storwize V3500 -
IBM SAN Volume Controller 0
IBM Opportunity Detect 9.1.1
IBM Opportunity Detect 10.0
IBM Infosphere Metadata Workbench 9.1
IBM Infosphere Metadata Workbench 8.7
IBM Infosphere Metadata Workbench 8.5
IBM InfoSphere Information Server 9.1
IBM InfoSphere Information Server 8.7
IBM InfoSphere Information Server 8.5
IBM InfoSphere Information Server 11.5
IBM InfoSphere Information Server 11.3
IBM InfoSphere Information Governance Catalog 11.5
IBM InfoSphere Information Governance Catalog 11.3
Apache Struts 2.3.28
Apache Struts 2.3.24
Apache Struts 2.3.28.1
Apache Struts 2.3.24.3
Apache Struts 2.3.24.2
Apache Struts 2.3.24.1
Apache Struts 2.3.20.3
Apache Struts 2.3.20.2
Apache Struts 2.3.20.1
Apache Struts 2.3.20
Not Vulnerable: Apache Struts 2.3.29


 

Privacy Statement
Copyright 2010, SecurityFocus