CVE-2017-5638: Apache Struts 2 RCE
How was Apache Struts 2 exploited in the Equifax breach?
Remote code execution in Apache Struts 2 via a crafted Content-Type HTTP header in multipart upload requests. The Jakarta Multipart parser evaluates OGNL expressions in error messages, enabling arbitrary command execution.
Impact & Exploitation
Used in the Equifax breach (2017) that exposed personal data of 147 million people. One of the most consequential web application vulnerabilities in history.
How Precogs AI Detects Apache Struts 2 RCE
Precogs AI identifies Struts 2 in compiled Java web applications and detects vulnerable versions even when embedded in WAR files or deployed behind reverse proxies.
Precogs Research
This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.