Change Download Preference


{{errorInSavingPref}}
Current Preference
{{dwnldPreference}}
Change Preference to:

Response to the Apache Struts Vulnerability

Last Updated: April 11, 2017

The Apache Struts component has recently been identified as possibly susceptible to a Remote Code Execution (RCE) attack. This has been recorded by CVE and Apache at the following links

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5638

https://cwiki.apache.org/confluence/display/WW/S2-045

No version of CA Directory is using the Apache Struts component, and as such is not impacted by this reported vulnerability.