ASM mitigation for vulnerability in Apache Struts1(CVE-2016-1181)

Question

Can you please give me information on ASM mitigation for vulnerability in Apache Struts1(CVE-2016-1181)?&nbsp;

snl · Answer

have you gone through below link
K40444230&nbsp;

yamashin55 · Answer

I also want to solve this problem.
I have a vulnerability in Apache Struts1(CVE-2016-1181) on my WEB server.&nbsp;
My BIG-IP is running the LTM+ASM.&nbsp;
Can I defend the vulnerability on Web Server with ASM's custom signature?&nbsp;

spirospero_3352 · Answer

I also want to defend this problem using an ASM signature. 
Yes, I have looked at all the upgrade fixes, but unfortunately we cannot manage to fit a release in as soon as we would like. Hence it would be ideal if we could mitigate the issue using an ASM signature until the fix can be released. &nbsp;

mtojo · Answer

I wait for formal ASM signature release.Thank you very much.&nbsp;

Forum Discussion

ASM mitigation for vulnerability in Apache Struts1(CVE-2016-1181)

Recent Discussions

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

Need Urgent BIGIP Trial License and VM Image

APM for banner and cert

How to Renew F5 Device Certificate

UCS backup not loading Big IP DNS pool

Related Content

Mitigating Apache Camel Vulnerability CVE-2025–27636 with F5 Products

Traffic Management User Interface Vulnerability: The Fix and Temporary Mitigation Options

Vulnerability Mitigation

Re: Mitigation of OWASP API6: 2019 Mass Assignment vulnerability using F5 Distributed Cloud Platform

Mitigating OWASP Web Application Risk: Vulnerable & Outdated Components using F5 XC Platform

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS