CVE-2020-12395

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2020-12395 is a vulnerability that affects Apache Tomcat, a popular open-source web server and servlet container. The flaw was first reported in February 2020 by an independent security researcher. The vulnerability allows an attacker to bypass the security constraints configured in the application and gain unauthorized access to sensitive resources. When exploited, this vulnerability can allow attackers to read or modify sensitive data, execute arbitrary code on the affected system, or launch denial-of-service attacks. The vulnerability affects all versions of Apache Tomcat up to and including version 9.0.31, although newer versions have since been released that include patches to address the issue. In response to the vulnerability, the Apache Software Foundation released a security update that addressed the issue. However, it is important for organizations that use Apache Tomcat to ensure they have applied the updated patch to their systems. Failure to do so could leave their systems vulnerable to attack, potentially exposing sensitive information and compromising the integrity of their systems.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2020-12395 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Close Quarters Encounters with Third Generation Malware Compels UK and Danish Municipalities to Remodel Vulnerability Management Safeguards