Serial number: AV25-800
Date: December 2, 2025
On November 11, 2025, Apache published a security advisory to address a vulnerability in the following products:
- Apache Struts – versions Struts 2.0.0 to Struts 2.3.37 (EOL)
- Apache Struts – versions Struts 2.5.0 to Struts 2.5.33 (EOL)
- Apache Struts – versions Struts 6.0.0 to Struts 6.7.0
- Apache Struts – versions Struts 7.0.0 to Struts 7.0.3
The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.