Sonatype Intelligence Insights: CVE-2020-13935 - Apache Tomcat Websocket - Denial of Service (DoS)

By Ax Sharma on July 29, 2020 vulnerabilities

4 minute read time

July’s Nexus Intelligence Insight takes a deep dive into a Denial of Service (DoS) vulnerability impacting the popular Apache Tomcat Websocket component.
Read More...

Nexus Intelligence Insights: What's in a Ghostcat? CVE-2020-1938 Apache Tomcat - Local File Inclusion Potentially Leads to RCE

By Ax Sharma on March 09, 2020 vulnerabilities

6 minute read time

Ghostcat manipulates the widely used Apache Tomcat web server. No version of Tomcat released in the last 13 years is immune, unless properly patched.
Read More...

Top 5 Tomcat Vulnerabilities

By Sylvia Fronczak on June 12, 2019 vulnerability

3 minute read time

If you spend time monitoring and patching OSS projects, you know Tomcat has some vulnerabilities. Today, Tomitribe walked us through 5 of those vulnerabilities.
Read More...

Evaluating an Open Source Project's Security

By Tim OBrien on April 10, 2012 Nexus Repo Reel

3 minute read time

Evaluating an Open Source Project's Security
Read More...

How To Configure the Maven-Jetty Plugin for OpenEJB

By Heather Loney on March 11, 2010 Nexus Repo Reel

1 minute read time

How To Configure the Maven-Jetty Plugin for OpenEJB
Read More...