Read the original article at https://www.cisa.gov/news-events/alerts/2023/12/12/apache-software-foundation-updates-struts-2
The Apache Software Foundation has released security updates to address a vulnerability (CVE-2023-50164) in Struts 2. A remote attacker could exploit this vulnerability to take control of an affected system.
Users and administrators are encouraged to review the Apache Security Bulletin and upgrade to Struts 2.5.33 or Struts 6.3.0.2 or greater.
Read the original article at https://www.cisa.gov/news-events/alerts/2023/12/12/apache-software-foundation-updates-struts-2