virus logo FortiClient Vulnerability

Apache Tomcat CVE-2014-0119 Weak Authentication Vulnerability

description-logoDescription

In limited circumstances it was possible for a malicious web application to replace the XML parsers used by Tomcat to process XSLTs for the default servlet, JSP documents, tag library descriptors (TLDs) and tag plugin configuration files. The injected XML parser(s) could then bypass the limits imposed on XML external entities and/or have visibility of the XML files processed for other web applications deployed on the same Tomcat instance.

affected-products-logoAffected Applications

Apache Tomcat

CVE References

CVE-2014-0119

Other References

http://tomcat.apache.org/security.html
ID 54606
Created Jan 17, 2020
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor Apache
Patch manual
Application Apache Tomcat