{"uuid": "a2398f4d-d6a1-4a1d-b4ef-4c05944d3069", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41081", "type": "seen", "source": "https://t.me/cibsecurity/70373", "content": "\u203c CVE-2023-41081 \u203c\n\nThe mod_jk component of Apache Tomcat Connectors\u00c2\u00a0in some circumstances, such as when a configuration included\u00c2\u00a0\"JkOptions +ForwardDirectories\" but the configuration did not provide explicit mounts for all possible proxied requests, mod_jk would use an implicit mapping and map the request to the first defined worker.\u00c2\u00a0Such an implicit mapping could result in the unintended exposure of the\u00c2\u00a0status worker and/or bypass security constraints configured in httpd. As\u00c2\u00a0of JK 1.2.49, the implicit mapping functionality has been removed and all\u00c2\u00a0mappings must now be via explicit configuration.\u00c2\u00a0Only mod_jk is affected\u00c2\u00a0by this issue. The ISAPI redirector is not affected.This issue affects Apache Tomcat Connectors (mod_jk only): from 1.2.0 through 1.2.48.Users are recommended to upgrade to version 1.2.49, which fixes the issue.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-13T14:23:34.000000Z"}