Another Apache Struts Vulnerability Under Active Exploitation
Tags
attack-pattern: Data Ip Addresses - T1590.005 Malicious File - T1204.002 Network Security Appliances - T1590.006 Server - T1583.004 Server - T1584.004 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID dd9a10a8-c08f-4a1a-9203-da219395feef
Fingerprint b70971c7c977df4b
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 7, 2017, 6:42 p.m.
Added to db Oct. 9, 2022, 4:06 p.m.
Last updated Nov. 17, 2024, 5:55 p.m.
Headline Vulnerability Information
Title Another Apache Struts Vulnerability Under Active Exploitation
Detected Hints/Tags/Attributes 28/1/14
Source URLs
Redirection Url
Details Source https://blog.talosintelligence.com/2017/09/apache-struts-being-exploited.html
URL Provider
Details Provider Source level domain
Details talosintelligence.com blog.talosintelligence.com
Attributes
Details Type #Events CTI Value
Details CVE 28 
cve-2017-9805
Details CVE 122 
cve-2017-5638
Details Domain 2 
wildkind.ru
Details Domain 2 
st2buzgajl.alifuzz.com
Details Domain 904 
snort.org
Details IPv4 2 
188.120.246.215
Details IPv4 2 
101.37.175.165
Details IPv4 2 
162.158.182.26
Details IPv4 2 
162.158.111.235
Details IPv4 2 
141.101.76.226
Details IPv4 2 
141.101.105.240
Details Url 2 
http://wildkind.ru:8082/?vulnerablesite
Details Url 2 
http://wildkind.ru:8082/?
Details Url 2 
http://st2buzgajl.alifuzz.com/052