Apache Struts2 Vendor bulletins

Every time there is a critical vulnerability that is discovered, I often get the question “how am I impacted?” The challenge is this, even if you have a vulnerability management toolset (Nessus, Qualys etc) you may not see the entire picture of what is impacted. There could be many reasons for this such as permissions… Continue Reading