Apache Struts 2 OGNL Expression Injection Vulnerability Allowing Remote Code Execution

A remote code execution vulnerability has been identified in Apache Struts versions 2.0.0 through 2.3.15. This vulnerability allows attackers to execute arbitrary OGNL expressions by sending crafted requests with specific prefixes, such as action:, redirect:, or redirectAction:. The issue arises from inadequate sanitization of user input, enabling the execution of malicious code on the server.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the affected server.

Reproduction

To reproduce this vulnerability, send a request to the server running an affected version of Apache Struts. Include a parameter with a crafted OGNL expression, using one of the vulnerable prefixes (action:, redirect:, or redirectAction:). The server's response should indicate that the OGNL expression has been executed, demonstrating successful exploitation.

Remediation

Users are advised to upgrade to Apache Struts versions later than 2.3.15. For guidance on updating, consult the Apache Struts documentation.