Posted on 02-21-2020 08:10 AM
Just want to give a heads up since I did not see it anywhere else on Jamfnation yet. My security team contacted me today regarding a Tomcat vulnerability. Remote code execution in Apache Tomcat AJP connector. A lot of versions of Tomcat effected. Please look at the link below for details.
https://www.cybersecurity-help.cz/vdb/SB2020022111?affChecked=1
Posted on 02-21-2020 09:10 AM
I have opened a case with Jamf. The 8.5.51 version needs to be tested by them before we can look at upgrading it.