CVE-2020-0822
maven/org.apache.tomcat/tomcat-util
Improper Privilege Management
An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations, aka 'Windows Language Pack Installer Elevation of Privilege Vulnerability'. Note this is due to axis2 clustering including a dependency to tomcat which is vulnerable to this issue.
Version 9.0.52
Upgrade to version 10.0.0-M1 or above.
2021-09-16
source |