Hot Topics

Tomcat

Nexus Intelligence Insights:CVE-2020-13935 – Apache Tomcat Websocket – Denial of Service (DoS)

| | Apache Tomcat, FEATURED, Nexus Intelligence, Tomcat, Vulnerabilities
For July’s Nexus Intelligence Insight we take a deep dive into a Denial of Service (DoS) vulnerability impacting the popular Apache Tomcat Websocket component ...
Sonatype Blog

Nexus Intelligence Insights: What’s in a Ghostcat? CVE-2020-1938 Apache Tomcat – Local File Inclusion Potentially Leads to RCE

| | cve-2020-1938, FEATURED, information exposure, Nexus Intelligence Insights, Tomcat, Vulnerabilities
For this month’s Nexus Intelligence Insights, let’s dive deep into the popular Ghostcat vulnerability making headlines recently. This vulnerability deserves attention as it impacts the widely used Apache Tomcat web server, has ...
Sonatype Blog
Automatically Discover, Prioritize and Remediate Apache Tomcat AJP File Inclusion Vulnerability (CVE-2020-1938) using Qualys VMDR

Automatically Discover, Prioritize and Remediate Apache Tomcat AJP File Inclusion Vulnerability (CVE-2020-1938) using Qualys VMDR

| | AJP, Apache Tomcat, asset inventory, cve-2020-1938, patch management, policy compliance, Qualys Technology, The Laws of Vulnerabilities, threat protection, Tomcat, VMDR, Vulnerability Management
A severe vulnerability exists in Apache Tomcat’s Apache JServ Protocol. The Chinese cyber security company Chaitin Tech discovered the vulnerability, which is named “Ghostcat” and is tracked using CVE-2020-1938. The security issue ...
The Laws of Vulnerabilities – Qualys Blog

Top 5 Tomcat Vulnerabilities

| | Apache Tomcat, Everything Open Source, How-tos, Tomcat, vulnerability
Those who spend time monitoring and patching open source projects will be quite aware that Tomcat has some vulnerabilities ...
Sonatype Blog