CVE advisoryKnown Exploit
CVE-2020-1938
Apache Tomcat AJP File Access and Code Execution Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
The Apache Tomcat AJP Connector vulnerability allows attackers to access arbitrary files or process files as JSP, potentially leading to remote code execution. This impacts organizations using affected Apache Tomcat versions, posing a risk to system integrity and data confidentiality if AJP ports are exposed.