CVE-2015-1831

Publication date

2015-07-16 14:00:00

Family

redhat

State

PUBLISHED

Description

The default exclude patterns (excludeParams) in Apache Struts 2.3.20 allow remote attackers to "compromise internal state of an application" via unspecified vectors.