It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Community
Products
Crowd
Questions
Vulnerability struts2-core-2.3.20.1.jar

Vulnerability struts2-core-2.3.20.1.jar

struts2-core-2.3.20.1.jar this file has serious vulnerability, is there a fix available from Atlassian, this file is in may locations see below

/opt/atlassian-crowd-2.8.4/crowd-webapp/WEB-INF/lib/struts2-core-2.3.20.1.jar

Installation Path:

/opt/atlassian-crowd-2.8.4/demo-webapp/WEB-INF/lib/struts2-core-2.3.20.1.jar

Installation Path:

/opt/atlassian-crowd-2.8.4/crowd-openidserver-webapp/WEB-INF/lib/struts2-core-2.3.20.1.jar

Installation Path:

/opt/atlassian-crowd-2.8.4/crowd-openidclient-webapp/WEB-INF/lib/struts2-core-2.3.20.1.jar

1 answer

0 votes

Hi Asif,

Yes, there is a fix available. You will actually need to upgrade your Crowd installation. Please take a look at this page: https://confluence.atlassian.com/crowd/crowd-security-advisory-2017-03-10-876857916.html

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Products

Community resources

Support

Interests

Community resources

Support

Top groups

Community resources

Support

It's not the same without you

Vulnerability struts2-core-2.3.20.1.jar

1 answer

Suggest an answer

Was this helpful?

Thanks!

TAGS

Bridget

⏰ Day in the life of a Jira Admin!

Community Events

Events near you

Ask a question

Start a discussion

Products

Community resources

Support

Interests

Community resources

Support

Top groups

Community resources

Support

It's not the same without you

Vulnerability struts2-core-2.3.20.1.jar

1 answer

Suggest an answer

Was this helpful?

Thanks!

TAGS

Bridget

⏰ Day in the life of a Jira Admin!

Community Events

Events near you