Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-3930

CVE-2013-4590 vulnerability with Tomcat 7.0.42 shipped with Crowd 2.7.2

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Medium
    • 2.8
    • 2.7.2
    • None

    Description

      Crowd 2.7.2 is shipped with Tomcat 7.0.42, which is susceptible to CVE-2013-4590

      Workaround

      Deploy Crowd WAR instead, with Tomcat 7.0.50 or above. Instructions here: https://confluence.atlassian.com/display/CROWD/Installing+Crowd+WAR+Distribution

      Attachments

        Issue Links

          mentioned in

          Page Loading...

          Activity

            People

              aknoll Avi Knoll (Inactive)
              fsim Foo Sim (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: