Apache Software Foundation has released security update to address vulnerabilities in Apache Struts 2.3.x prior to version 2.3.35 and Struts 2.5.x prior to version 2.5.17. Exploitation of these vulnerabilities could allow an attacker to take control of an affected system.
Users and Administrators are encouraged to review Apache Security Bulletin and apply necessary updates.