..
Click anywhere to stop
Click anywhere to stop
Detect date
?
|
09/21/2017 |
Severity
?
|
High |
Description
|
An remote code-execution vulnerability was found in Apache Tomcat. These vulnerability can be exploited remotely via a specially designed HTTP request. By exploiting these vulnerability malicious users can remotely execute arbitrary code in the context of the affected application. Technical details This vulnerablity only affects systems with HTTP PUTs enabled, it could be exploited to upload a malicious JSP file to a targeted server. |
Affected products
|
Apache Tomcat version 9.0.1 |
Solution
|
Update to the latest version |
Original advisories
|
Apache Tomcat 8 vulnerabilities |
Impacts
?
|
ACE [?] |
Related products
|
Apache Tomcat |
CVE-IDS
?
|
|
Exploitation
|
Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. |
Find out the statistics of the vulnerabilities spreading in your region |