CVE-2017-9805

CVE Database · CVE-2017-9805

CVE-2017-9805

· HIGHAnalyzed

CVSS v3.1

8.1

EPSS

99.46%

Published

Sep 15, 2017

Modified

Apr 21, 2026

CISA Known Exploited Vulnerability

Added: 2021-11-03 · Due: 2022-05-03

Apply updates per vendor instructions.

Public PoC / Exploit (11)

All weaponized →

Exploit-DBApache Struts 2.5 < 2.5.12 - REST Plugin XStream Remote Code Execution NucleiNuclei detection template TrickestTrickest PoC index GitHub PoCmazen160/struts-pwn_CVE-2017-9805★247 GitHub PoCluc10/struts-rce-cve-2017-9805★60 GitHub PoCchrisjd20/cve-2017-9805.py★21 GitHub PoC0x00-0x00/-CVE-2017-9805★15 GitHub PoCLone-Ranger/apache-struts-pwn_CVE-2017-9805★5 GitHub PoChahwul/struts2-rce-cve-2017-9805-ruby★3 GitHub PoCShakun8/CVE-2017-9805★3 GitHub PoCBeyondCy/S2-052★1

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHandler with an instance of XStream for deserialization without any type filtering, which can lead to Remote Code Execution when deserializing XML payloads.

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-502CWE-502

Affected Products (12)

apache · struts (up to 2.3.34)vulnerable

apache · struts (up to 2.5.13)vulnerable

cisco · digital_media_managervulnerable

cisco · hosted_collaboration_solutionvulnerable