- NVD - CVE-2020-1938
In Apache Tomcat 9 0 0 M1 to 9 0 0 30, 8 5 0 to 8 5 50 and 7 0 0 to 7 0 99, Tomcat shipped with an AJP Connector enabled by default that listened on all configured IP addresses It was expected (and recommended in the security guide) that this Connector would be disabled if not required
- 2020 - Wikipedia
2020 saw the decade begin with the COVID-19 pandemic, which led to global social and economic disruption, mass cancellations and postponements of events, worldwide lockdowns, and the largest economic recession since the Great Depression in the 1930s [1]
- Hacking-Vulnerability-CVE-2020-1938-Ghostcat CVE-2020-1938. md at main . . .
CVE-2020-1938 is a file read inclusion vulnerability in the AJP connector in Apache Tomcat This is enabled by default with a default configuration port of 8009 A remote, unauthenticated attacker could exploit this vulnerability to read web application files from a vulnerable server
- Mitigation Instructions for CVE-2020-1938 - Cyrisk
CVE-2020-1938, also known as Ghostcat, is a vulnerability in the Apache JServ Protocol (AJP) connector in Apache Tomcat It allows an unauthenticated remote attacker to read or include files in the web application’s directories on the server
- AJP File Read Inclusion in Apache Tomcat (CVE-2020-1938) and Undertow . . .
CVE-2020-1938 is a file read inclusion using the AJP connector in Apache Tomcat The AJP protocol is enabled by default, with the AJP connector listening in TCP port 8009 and bond to IP address 0 0 0 0
- CVE-2020-1938 Impact, Exploitability, and Mitigation Steps | Wiz
Understand the critical aspects of CVE-2020-1938 with a detailed vulnerability assessment, exploitation potential, affected technologies, and remediation guidance
- CVE-2020-1938: Ghostcat - Apache Tomcat AJP File Read Inclusion . . .
CVE-2020-1938 is a file read inclusion vulnerability in the AJP connector in Apache Tomcat This is enabled by default with a default configuration port of 8009 A remote, unauthenticated attacker could exploit this vulnerability to read web application files from a vulnerable server
- CVE-2020-1938 Common Vulnerabilities and Exposures | SUSE
Secure your Linux systems from CVE-2020-1938 Stay ahead of potential threats with the latest security updates from SUSE
|