mardi 7 avril 2020    || Inscription

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

lundi 24 février 2020

Apache Tomcat up to 7.0.99/8.5.50/9.0.30 AJP Connector Ghostcat privilege escalation

A vulnerability was found in Apache Tomcat up to 7.0.99/8.5.50/9.0.30 (Application Server Software). It has been classified as critical. This affects an unknown code of the component AJP Connector. Upgrading to version 7.0.100, 8.5.51 or 9.0.31 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The best possible mitigation is suggested to be patching the affected component.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 151


Événements SSI