CVE-2017-5638

Apache Struts Jakarta Multipart parser allows for malicious file upload using the Content-Type value, leading to remote code execution. Vendor/Product: Apache Struts. Added to CISA KEV 2021-11-03; required action: Apply updates per vendor instructions.