Solución nº - CS322644
Disable the Tomcat AJP Connector which comes with security vulnerability CVE-2020-1938 when using Arbortext Publishing Engine
Modificado: 01-Jul-2021
Se aplica a
- PTC Arbortext Publishing Engine 7.0 F000 to 8.0
Descripción
- Tomcat security vulnerability
- CVE-2020-1938 associated with AJP connector
- AJP connector that is enabled by default
- Arbortext Publishing Engine does not require the AJP connector
- PTC recommends to disable it as a workaround
This is a PDF version of Article 322644 and may be out of date. For the latest version CS322644