CSO Online22h
Tomcat PUT to active abuse as Apache deals with critical RCE flaw
Apache Software’s open-source web container for handling Java-based web applications, Tomcat, is under active attacks through ...
A worrying critical security flaw in Apache Tomcat could let hackers take over servers with ease
The researchers added that the attack is “dead simple” to execute, and requires no authentication. The only requirement is that Tomcat is using file-based session storage which, according to the ...