| Revision Date: | 2021-08-15 | Version: | 1 |
| Title: | CVE-2016-0785 |
| Description: |
Apache Struts 2.x before 2.3.28 allows remote attackers to execute arbitrary code via a "%{}" sequence in a tag attribute, aka forced double OGNL evaluation.
|
| Family: | unix | Class: | vulnerability |
| Status: | | Reference(s): | Mitre CVE-2016-0785
SUSE CVE-2016-0785
|
| Platform(s): | SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP4
SUSE Linux Enterprise Software Development Kit 11 SP4
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND struts is not affected
|