Summary

Security Advisory ID : BSA-2020-1043

Component : Apache Tomcat

Revision : 1.0: Final

When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 it was possible to bypass security constraints and/or view the source code of JSPs for resources served by the VirtualDirContext using a specially crafted request.

Affected Products

No Brocade Fibre Channel Products from Broadcom are currently known to be affected by this vulnerability.

Revision History