CVE-2023-50164 : An attacker can manipulate file upload params to enable paths traversal and unde

An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. Users are recommended to upgrade to versions Struts 2.5.33 or Struts 6.3.0.2 or greater to fix this issue.

Published 2023-12-07 09:15:07

Updated 2025-02-13 18:15:49

Source Apache Software Foundation

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2023-50164

Apache » Struts
Versions from including (>=) 2.0.0 and before (<) 2.5.33
cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*
Matching versions
Apache » Struts
Versions from including (>=) 6.0.0 and before (<) 6.3.0.2
cpe:2.3:a:apache:struts:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-50164

EPSS FAQ

53.98%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 98 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-50164

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2023-50164

CWE-552 Files or Directories Accessible to External Parties

The product makes files or directories accessible to unauthorized actors, even though they should not be.

Assigned by: security@apache.org (Secondary)

References for CVE-2023-50164

https://www.openwall.com/lists/oss-security/2023/12/07/1

oss-security - CVE-2023-50164: Apache Struts: File upload component had a directory traversal vulnerability
Mailing List
http://www.openwall.com/lists/oss-security/2023/12/07/1

oss-security - CVE-2023-50164: Apache Struts: File upload component had a directory traversal vulnerability
https://lists.apache.org/thread/yh09b3fkf6vz5d6jdgrlvmg60lfwtqhj

[ANN] Apache Struts 6.3.0.2 & 2.5.33-Apache Mail Archives
Mailing List;Patch
https://security.netapp.com/advisory/ntap-20231214-0010/

CVE-2023-50164 Apache Struts Vulnerability in NetApp Products | NetApp Product Security
Third Party Advisory;VDB Entry
http://packetstormsecurity.com/files/176157/Struts-S2-066-File-Upload-Remote-Code-Execution.html

Struts S2-066 File Upload Remote Code Execution ≈ Packet Storm
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2023-50164

Products affected by CVE-2023-50164

Exploit prediction scoring system (EPSS) score for CVE-2023-50164

CVSS scores for CVE-2023-50164

CWE ids for CVE-2023-50164

References for CVE-2023-50164