Apache Tomcat CVE-2013-4590 Information Disclosure Vulnerability

description-logoDescription

Application provided XML files such as web.xml, context.xml, *.tld, *.tagx and *.jspx allowed XXE which could be used to expose Tomcat internals to an attacker. This vulnerability only occurs when Tomcat is running web applications from untrusted sources such as in a shared hosting environment.

affected-products-logoAffected Applications

Apache Tomcat

CVE References

CVE-2013-4590