Apache Releases Critical Security Update | Information Technology | University of Pittsburgh

Apache Releases Critical Security Update

Thursday, March 9, 2017 - 14:48


The Apache Software Foundation has released security updates to address a vulnerability in Struts 2. Apache Struts 2 is an open-source web application framework for developing Java EE web applications. A remote attacker could exploit this vulnerability to take control of an affected system.

Administrators of an affected system are encouraged to review the Apache Security Bulletin and upgrade to Struts 2.3.32 or Struts Please contact the Technology Help Desk at 412-624-HELP [4357] if you have any questions about this announcement or need assistance.