Apache Struts Extras — known CVE vulnerabilities
Every CVE whose affected-product data names Apache Struts Extras, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
- CVE-2025-54656 — CVSS 6.5 (medium): ** UNSUPPORTED WHEN ASSIGNED ** Improper Output Neutralization for Logs vulnerability in Apache Struts. This issue affects Apache Struts…