Apache Tomcat has a remote execution vulnerability that allows for remote code execution. See CVE-2019-0232. Suggested mitigation is to disallow the passing of command line arguments. Disassow is the default setting from v.9.0.18 forward.
Keywords: CyberSecurityRecap, Apache Tomcat remote code execution vulnerability.
Troy Frericks.
blog 16-Apr-2019
troyf<at>CyberSecurityRecap.com
=
Copyright 2015-2019 by Troy Frericks, http://cybersecurityblog1.frericks.us/.
#