Apache Struts Vulnerability

Document ID : KB000113742
Last Modified Date : 13/09/2018
Show Technical Document Details
Introduction:
Vulnerability was detected on SOI servers that affect Apache Struts versions 2.3.x. We are using 4.0 SOI version. CVE number is CVE-2018-11776-Critical
Question:
What version of Struts SOI has? Is it affected by CVE-2018-11776?
Environment:
SOI 4.0
Apache Tomcat 7.0.62
Apache Struts 1.0.2
Answer:
 CVE-2018-11776 is for Struts version 2.x, it can't affect the Struts version SOI has which is 1.0.2