Apache Struts 2 Namespace Evaluation Remote Code Execution (CVE-2018-11776 / S2-057)

Today, a new Apache Struts 2 Remote Code Execution vulnerability was announced (S2-057) and CVE-2018-11776 was allocated. At the moment, there is no public Proof of Concept exploit available. for ...
Published Aug 22, 2018
Version 1.0
apache struts
ASM Advanced WAF
cve-2018-11776
java vulnerability
s2-057
security
JackRodriguez's avatar
JackRodriguez
Icon for Nimbostratus rankNimbostratus
Aug 24, 2018

Can this be mitigated in an iRule? If so, does anyone have that example?