Text Form of Oracle Security Alert - CVE-2018-11776 Risk Matrices

This document provides the text form of the CVE-2018-11776 Advisory Risk Matrices. Please note that the CVE numbers in this document correspond to the same CVE numbers in the CVE-2018-11776 Advisory

This page contains the following text format Risk Matrices:

Text Form of Risk Matrix for Third Party Component

This table provides the text form of the Risk Matrix for Third Party Component.

CVE# Description

Vulnerability in the Apache Struts 2 component of Third Party Component. Supported versions that are affected are 2.3.34 and before 2.5.16 and before. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Apache Struts 2. Successful attacks of this vulnerability can result in takeover of Apache Struts 2.

CVSS v3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). (legend) [Advisory]