Apache Tomcat AJP RCE Vulnerability (Ghostcat) - Active Check CVE-2020-1938
- Severity
- Vulnerability description
- Not available
- Risk description
- Not available
- Recommendation
- Not available
- References
- https://lists.apache.org/thread/bnys5lvg1875dsslkkx2vmwxv833l35xhttps://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.31https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.51https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.100https://web.archive.org/web/20250114042903/https://www.chaitin.cn/en/ghostcathttps://www.cnvd.org.cn/flaw/show/CNVD-2020-10487https://github.com/YDHCUI/CNVD-2020-10487-Tomcat-Ajp-lfihttps://securityboulevard.com/2020/02/patch-your-tomcat-and-jboss-instances-to-protect-from-ghostcat-vulnerability-cve-2020-1938-and/https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- Codename
- Not available
- Detectable with
- Network Scanner
- Scan engine
- OpenVAS
- Cisa Kev
Yes
- Exploitable with Sniper
- No
- CVE Published
- Not available
- Detection added at
- Software Type
- Not available
- Vendor
- Not available
- Product
- Not available
Detect & validate this vulnerability
Go beyond surface scans. Get real validation with proprietary tools designed to prove what’s exploitable in your environment.