A vulnerability has been discovered in Apache Struts2, a framework for providing application services through a web server.
What is the risk?
When successfully exploited, this vulnerability gives a cyber attacker the ability to run commands on the web server running the affected software. Exploiting this vulnerability does not require sophisticated technical skill. Active exploits have been widely detected across the Internet.