Open Source Linux
Sep 5, 2021 · Information Security
How to Exploit Critical Tomcat Vulnerabilities (CVE‑2017‑12615, CVE‑2020‑1938, CVE‑2019‑0232) Step‑by‑Step
This guide introduces Apache Tomcat, explains the mechanics of several high‑severity CVEs—including arbitrary file write, AJP file inclusion, and CGI RCE—provides detailed reproduction steps with Docker, command‑line payloads, and code snippets, and demonstrates how to gain remote shells via weak credentials and war deployment.
CVE-2017-12615CVE-2019-0232CVE-2020-1938
0 likes · 15 min read