CVE-2023-50164

Vulnerable docker container for Apache Struts 2 RCE CVE-2023-50164

CVE-2023-50164 : Apache Struts 2 vulnerable Docker container Apache has recently released an advisory regarding CVE-2023-50164, a critical vulnerability with a severity rating of 98 that affects Apache Struts 2 CVE-2023-50164 is intricately tied to an organization's Apache Struts architecture and the way it uses its file upload feature, enabling unauthorized path travers

struts2 s2-066

Struts 2 S2-066 Vulnerability (CVE-2023-50164)

Demo CVE-2023-50164 Install as follows: python3 -m venv venv source venv/bin/activate pip install -r requirementstxt Run as follows: mvn clean jetty:run to build the project and start the Struts app in Jetty at localhost:9999/foo Run python exploit to demo the attack with default values, where the payload is uploaded to src/mai

CVE-2023-50164 (Apache Struts path traversal to RCE vulnerability) - Proof of Concept

CVE-2023-50164 (Apache Struts path traversal to RCE vulnerability) - Proof of Concept This PoC has been made to test an RCE (Remote Code Execution) by exploiting the Apache Struts2 vulnerability Build the image and run a container: $ DOCKER_BUILDKIT=1 docker build -t struts2-rce-poc && docker run --rm -p 8080:8080 struts2-rce-poc

A scanning utility and PoC for CVE-2023-50164

CVE-2023-50164 A scanning utility and PoC for CVE-2023-50164 Considerations CVE-2023-50164's exploitation is very environment specific This PoC attempts to generalize the exploitation process by requiring the user to enter environment specific details through the script flags The script attempts to upload a benign file and overwrite it with a file path passed by the user

This is a Proof of Concept (PoC) for CVE-2023-50164, which outlines a new path traversal vulnerability which can lead to Remote Code Execution (RCE) in struts-core To remediate the issue, it is advised that you update to Struts 2533 or Struts 6302 or greater This repo builds off the excellent work of Henrik Plate found here Run the PoC There are two maven profiles in th

CVE-2023-50164 Sårbare versjoner Struts 200 - Struts 2337 (EOL) Struts 250 - Struts 2532 Struts 600 - Struts 630 Versjoner hvor sårbarheten er lukket Struts 2533 Struts 6302 Script for søk Windows/PowerShell For Powershell 51 og nyere Skrevet av Kjetil Sigvartsen i Norsk helsenett SF [String[]]$Extensions = @('*jar', '*

Disclaimer Notwithstanding anything that may be contained to the contrary in your agreement(s) with Sysdig, Sysdig provides no support, no updates, and no warranty or guarantee of any kind with respect to these script(s), including as to their functionality or their ability to work in your environment(s) Sysdig disclaims all liability and responsibility with respect to any use

Contains vulnerable WAR file and docker file that can be used to test CVE-2023-50164-Apache-Struts-RCE This dockerfile and vulnerable application is compiled and designed using resources and code from githubcom/jakabakos/CVE-2023-50164-Apache-Struts-RCE Thanks to him for such a detailed resource and exploit Do check out the repository and blog mentioned in the refe

A critical security vulnerability, identified as CVE-2023-50164 (CVE: 9.8) was found in Apache Struts, allowing attackers to manipulate file upload parameters that can potentially lead to unauthorized path traversal and remote code execution (RCE).

CVE-2023-50164: Apache Struts path traversal to RCE vulnerability A critical security vulnerability, identified as CVE-2023-50164 (CVE: 98) was found in Apache Struts, allowing attackers to manipulate file upload parameters that can potentially lead to unauthorized path traversal and remote code execution (RCE) This exploit script is written for a CVE analysis on vsociety Po

AsfandAliMemon25-CVE-2023-50164-Analysis

CVE-2023-50164 Setup Victim $ cat /etc/issue Ubuntu 22044 LTS \n \l Install Tomcat $ sudo apt update $ sudo apt upgrade $ sudo apt install vim git socat openjdk-17-jdk $ wget dlcdnapacheorg/tomcat/tomcat-8/v85100/bin/apache-tomcat-85100targz $ tar zxvf apache-tomcat-85100targz $ sudo mv apache-tomcat-85100/ /usr/lo

CVE-2023-50164: Apache Struts path traversal to RCE vulnerability