KLA11785Security vulnerability in Apache Tomcat

2020-05-11T00:00:00
ID KLA11785
Type kaspersky
Reporter Kaspersky Lab
Modified 2020-05-29T00:00:00

Description

Detect date:

05/11/2020

Severity:

Warning

Description:

Security vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to execute arbitrary code, bypass security restrictions.

Affected products:

Apache Tomcat 8 earlier than 8.5.55
Apache Tomcat 9 earlier than 9.0.35

Solution:

Update to the latest version
Tomcat 8 Software Downloads
Tomcat 9 Software Downloads

Original advisories:

Apache Tomcat 8.x vulnerabilities
Apache Tomcat 9.x vulnerabilities

Impacts:

ACE

Related products:

Apache Tomcat

CVE-IDS:

CVE-2020-94840.0Unknown