DaveB-Opt 0 Posted April 25, 2019 Share Posted April 25, 2019 3 of our domain controllers are showing a security vulnerability of CVE-2017-5638.Struts2. Currently showing as 'detected'. What action should I be taking? Link to comment Share on other sites More sharing options...
Administrators Marcos 5,286 Posted April 25, 2019 Administrators Share Posted April 25, 2019 Please refer to https://forum.eset.com/topic/19223-cve-2017-5638struts2-being-reported-on-server-without-apache2-or-java/. Detected means that it was also blocked. What you can do is block remote IP addresses from which the attack attempt was performed on a firewall. DaveB-Opt 1 Link to comment Share on other sites More sharing options...
DaveB-Opt 0 Posted April 25, 2019 Author Share Posted April 25, 2019 Thanks Marcos Link to comment Share on other sites More sharing options...
Recommended Posts