Critical security vulnerabilities in the widely used Apache Struts framework have enabled hackers to compromise corporate web servers and steal sensitive data. The vulnerabilities allow remote code execution, which hackers have used to install malware and access credentials, databases, and protected information. Companies are encouraged to immediately install available patches to mitigate risks from the Apache Struts vulnerabilities.