Unrestricted file upload vulnerability in Apache Tomcat 7.x before 7.0.40, in certain situations involving outdated java.io.File code and a custom JMX configuration, allows remote attackers to execute arbitrary code by uploading and accessing a JSP file.
Max CVSS
6.8
EPSS Score
6.81%
Published
2014-09-12
Updated
2021-01-07
1 vulnerabilities found