Sonatype Introduces Next Generation Dependency Management | Press Release

blog-logo Sonatype Blog

Nexus Intelligence Insights:CVE-2020-13935 - Apache Tomcat Websocket - Denial of Service (DoS)

By Ax Sharma on July 29, 2020 vulnerabilities
July’s Nexus Intelligence Insight takes a deep dive into a Denial of Service (DoS) vulnerability impacting the popular Apache Tomcat Websocket component.
Read More...

Nexus Intelligence Insights: What's in a Ghostcat? CVE-2020-1938 Apache Tomcat - Local File Inclusion Potentially Leads to RCE

By Ax Sharma on March 09, 2020 vulnerabilities
Ghostcat manipulates the widely used Apache Tomcat web server. No version of Tomcat released in the last 13 years is immune, unless properly patched.
Read More...

Top 5 Tomcat Vulnerabilities

By Sylvia Fronczak on June 12, 2019 vulnerability
If you spend time monitoring and patching OSS projects, you know Tomcat has some vulnerabilities. Today, Tomitribe walked us through 5 of those vulnerabilities.
Read More...

Evaluating an Open Source Project's Security

By Tim OBrien on April 10, 2012 Nexus Repo Reel
Evaluating an Open Source Project's Security
Read More...

How To Configure the Maven-Jetty Plugin for OpenEJB

By Heather Loney on March 11, 2010 Nexus Repo Reel
How To Configure the Maven-Jetty Plugin for OpenEJB
Read More...