-
Task
-
Resolution: Done
-
High
-
None
-
None
Investigate and fix the tomcat-embed-core package vulnerability. The CGI Servlet in Apache Tomcat is vulnerable to Remote Code Execution.
Until a fixed version is installed, the vulnerability can be mitigated by setting the CGI Servlet initialization parameter enableCmdLineArguments to false.
Closing since this has been identified to be a false positive - please see Jerry's comments.
- clones
-
OPTFRA-478 Fix Vulnerability with spring-security-core package
- Closed
- mentioned in
-
Page Loading...