Apache Tomcat has a remote execution vulnerability that allows for remote code execution. See CVE-2019-0232. Suggested mitigation is to disallow the passing of command line arguments. Disassow is the default setting from v.9.0.18 forward.

Keywords: CyberSecurityRecap, Apache Tomcat remote code execution vulnerability.

Troy Frericks.
blog 16-Apr-2019
troyf<at>CyberSecurityRecap.com
=
Copyright 2015-2019 by Troy Frericks, http://cybersecurityblog1.frericks.us/.
#

Written by Troy Frericks

Leave a Comment

Your email address will not be published. Required fields are marked *