CVE-2020-10569
SysAid On-Premise 20.1.11 is reported to expose the AJP port by default, enabling a GhostCat-related file-read/remote-command exposure and unauthenticated file uploads that can be chained to execute commands. The description explicitly links these issues to AJP access and file upload weaknesses, ...