- Knowledge Base
- Apache Tomcat Native Connector CVE-2018-8020 Remote Security Vulnerability
Apache Tomcat Native Connector CVE-2018-8020 Remote Security Vulnerability
- Date Published:2018-11-09
- Last Updated:2018-11-09
- Version Affected: Tomcat Native 1.2.0 through 1.2.16, and 1.1.23 through 1.1.34.
- CVE: CVE-2018-8020 | 104934
Tomcat server is a free open source Web application server. It is a lightweight application server. It is widely used in small and medium-sized systems and users with concurrent access.
Apache Tomcat Native Connector is prone to a remote security vulnerability.An attacker can leverage this issue to bypass security restrictions and perform unauthorized actions. This may aid in further attacks.
At present, the vendor has released the patches to repair loopholes, patch for a link: http://mail-archives.us.apache.org/mod_mbox/www-announce/201807.mbox/<20180721101944.GA45239@minotaur.apache.org>