Apache Releases Security Update for Apache Tomcat JK Connectors
National Cyber Awareness System:
10/31/2018 05:56 PM EDT
Original release date: October 31, 2018
The Apache Software Foundation has released a security update to address a vulnerability affecting Apache Tomcat JK Connectors 1.2.0 to 1.2.44. A remote attacker could exploit this vulnerability to obtain access to sensitive information.
NCCIC encourages users and administrators to review the Apache security advisory for CVE-2018-11759 and apply the necessary update or mitigation.