Potential OGNL Injection Exploitation In JVM Based Application (4d0af518-828e-4a04-a751-a7d03f3046ad)

Detects potential OGNL Injection exploitation, which may lead to RCE. OGNL is an expression language that is supported in many JVM based systems. OGNL Injection is the reason for some high profile RCE's such as Apache Struts (CVE-2017-5638) and Confluence (CVE-2022-26134)

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Exploit Public-Facing Application - T1190 (3f886f2a-874f-4333-b794-aa6075009b1c)	Attack Pattern	Potential OGNL Injection Exploitation In JVM Based Application (4d0af518-828e-4a04-a751-a7d03f3046ad)	Sigma-Rules	1