Severity
High
Analysis Summary
CVE-2023-41081
Apache Tomcat Connectors could allow a remote attacker to obtain sensitive information, caused by a flaw in the mod_jk component. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-41081
Affected Vendors
Apache
Affected Products
- Apache Tomcat Connectors 1.2.0
- Apache Tomcat Connectors 1.2.48
Remediation
Upgrade to the latest version of Apache Tomcat Connectors, available from the Apache Website.