<iframe src="//www.googletagmanager.com/ns.html?id=GTM-TT8R4P" height="0" width="0" style="display:none;visibility:hidden">

Struts2 Vulnerability... Are you Affected?

Run a free Application Health Check and find out.

AHC_IMAGE3.jpg

Know What's in Your Software.

There is a new Apache Struts2 vulnerability being actively exploited.  The vulnerability, CVE-2017-5638, is a remote code execution bug found in Apache Struts2.  Our free service will tell you if your application is impacted and will offer remediation guidance.

The application analysis will show: 

  • Number of Components - Generate an inventory of open source components used in your application.
  • Vulnerability Risks  - Identify known open source security vulnerabilties, including the new Struts2 vulnerability.
  • License Risks - Determine what open source licenses pose a potential threat.  

Not sure what to evaluate?

While your source and binary code are not exposed, feel free to try one of our sample applications below:

Sample Application - a collection of components with known security vulnerabilities and license issues.
WebGoat
 - created in partnership with OWASP. This application is used to teach critical security best practices for development.

“Zero tolerance for risk is why some customers require us to provide proof that our applications do not contain hidden security or licensing vulnerabilities.  By partnering with Sonatype, we’re able to provide our customers with a detailed Software Bill of Materials validating that VMTurbo applications consist of only the highest quality open source components.”

- Sylvia Isler, Chief Architect at VMTurbo

Integrate_Blue_Circle.png

Component

The average application has 106 components.
validate_circle.png

Vulnerability

The typical application has 23 known vulnerabilities per application.
Developer_Training.png

License

Most applications indicate at least 8 GPL type licensed components.
guide_circle.png

Architecture

Many components in use are old, unsupported, or unpopular versions.
Get Nexus

Ready to try Nexus Products?