Apache Tomcat Vulnerability CVE-2020-9484 Scanner

Stay Up To Date
Asset Type


Need Membership


Asset Verify


API Support


Estimate Time (Second)


Apache Tomcat Vulnerability CVE-2020-9484 Scanner Detail

Attacker can control the content and name of the file on the server. There are couple of conditions must be satisfied for a successful attack.

Vulnerable Versions are listed below.

  • 10.0.0-M1 to 10.0.0-M4
  • 9.0.0-M1 tı 9.0.34
  • 8.5.0 to 8.5.54
  • 7.0.0 to 7.0.103

Some Advice for Common Problems

Change your Apache Tomcat versions other than listed vulnerable ones. If you are using PersistenceManager, Configure its sessionAttributeValueClassNameFilter other than "Null". This will also eliminates this vulnerability.

Community Discussions

Need a Full Assesment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service