Apache Tomcat CVE-2018-1304 Security Bypass Vulnerability

Summary

Tomcat server is a free open source Web application server. It is a lightweight application server. It is widely used in small and medium-sized systems and users with concurrent access.

Apache Tomcat is prone to a security-bypass vulnerability.Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks.

Solution

At present, the vendor has released the patches to repair loopholes, patch for a link: https://lists.apache.org/thread.html/b1d7e2425d6fd2cebed40d318f9365b44546077e10949b01b1f8a0fb@