The document provides detailed information about multiple vulnerabilities identified in the Apache Struts web application framework, affecting versions 2.3 to 2.3
34 and 2.5 to 2.5.16. These vulnerabilities could allow remote attackers to execute arbitrary code, perform denial of service attacks, and bypass security restrictions. The text also describes the impact of these vulnerabilities, the recommended solutions such as updating to the latest version, and provides additional resources for further assistance.https://www.cert.ssi.gouv.fr/pdf/CERTFR-2024-AVI-0417.pdf