How To Fix The Vulnerability About Structs2 (Vulnerability No. CVE-2018-11776) in CRMOD?
(Doc ID 2444263.1)
Last updated on SEPTEMBER 06, 2018
Applies to:Oracle CRM On Demand - Version 031CS and later
Information in this document applies to any platform.
A vulnerability abount structs2 was found in Aug.22. The vulnerability number is CVE-2018-11776.
Influenced version: Struts 2.3- Struts 2.3.34，Struts 2.5-Strtus 2.5.16 and unsupported version.
The solution is upgrading structs to 2.3.35 or 2.5.17.
Please help us to check the version if it is needed to be remediated.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document