The Equifax breach, for example, was traced back to your vulnerability while in the Apache Struts Net server software. If the business had installed the safety patch for this vulnerability it might have prevented the situation, but occasionally the software package update itself is compromised, as was the situation https://ieeexplore.ieee.org/document/9941250