Apache Tomcat JK Web Server Connector Path Traversal Information Disclosure Vulnerability (CVE-2018-11759):

ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Apache Tomcat JK Web Server Connector Path Traversal Information Disclosure Vulnerability (CVE-2018-11759):

book

Article ID: 194594

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) SITEMINDER

Issue/Introduction

We would like to seek your help to resolving the high vulnerability which reported by our Qaulys Report:

Apache Tomcat JK Web Server Connector Path Traversal Information Disclosure Vulnerability (CVE-2018-11759)

Environment

Release : 12.8

Component : SITEMINDER -WEB AGENT FOR APACHE

Resolution

Please ask support for mod_jk_1.2.46_linux_x64.zip fix.

Feedback

thumb_up Yes

thumb_down No