Oracle has released patches for vulnerabilities affecting many of its products. The IT giant has fixed several issues in the Apache Struts 2 framework, including the flaw CVE-2017-9805 that has been exploited in the wild for the past few weeks. At least 65 percent of Fortune 100 companies use Struts and they could all be exposed to remote attacks due to this vulnerability. The vulnerability is related to the way Struts deserializes untrusted data, it affects all versions of Struts since 2008.”]
Source: https://securityaffairs.co/wordpress/63426/security/oracle-cve-2017-9805-fix.html