Uploaded image for project: 'Optimization Framework'
  1. Optimization Framework
  2. OPTFRA-480

Fix tomcat-embed-core vulnerability

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Done
    • Icon: High High
    • Dublin Release
    • None
    • CMSO
    • None

      Investigate and fix the tomcat-embed-core package vulnerability. The CGI Servlet in Apache Tomcat is vulnerable to Remote Code Execution.

      Until a fixed version is installed, the vulnerability can be mitigated by setting the CGI Servlet initialization parameter enableCmdLineArguments to false.

      Closing since this has been identified to be a false positive - please see Jerry's comments.

            jf9860 jf9860
            snarayanan snarayanan
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: