SysAid On-Premise 20.1.11, by default, allows the AJP protocol port, which is vulnerable to a GhostCat attack. Additionally, it allows unauthenticated access to upload files, which can be used to execute commands on the system by chaining it with a GhostCat attack. NOTE: This may be a duplicate of CVE-2020-1938

Affected configurations

NVD

Node

sysaidon-premiseMatch20.1.11

References

packetstormsecurity.com/files/157314/Sysaid-20.1.11-b26-Remote-Command-Execution.html

www.sysaid.com/product/on-premise/20-2/release-notes

prion 2

cvelist 2

attackerkb 2

cve 2

zdt 1

packetstorm 1

threatpost 8

nessus 50

openvas 29

osv 10

githubexploit 9

qualysblog 2

ibm 7

redhat 16

oraclelinux 2

nvd 1

cisa_kev 1

centos 2

f5 1

debiancve 1

ubuntucve 1

myhack58 1

fedora 3

veracode 1

cgr 1

huawei 1

rapid7blog 1

github 1

trendmicroblog 1

redhatcve 2

checkpoint_advisories 1

amazon 3

debian 4

tomcat 3

suse 2

thn 2

kaspersky 1

mageia 1

photon 5

gentoo 1

atlassian 5

symantec 1

hackerone 1

trellix 2

rocky 1

ics 1

kitploit 1

oracle 2

prion

Design/Logic Flaw

2020-04-21 19:15:00

Default configuration

2020-02-24 22:15:00

cvelist

CVE-2020-10569

2020-04-21 19:01:37

CVE-2020-1938

2020-02-24 21:19:18

attackerkb

CVE-2020-10569

2020-04-21 00:00:00

CVE-2020-1938

2020-02-24 00:00:00

cve

CVE-2020-10569

2020-04-21 19:15:12

CVE-2020-1938

2020-02-24 22:15:12

zdt

Sysaid 20.1.11 b26 Remote Command Execution Vulneravility

2020-04-21 00:00:00

packetstorm

Sysaid 20.1.11 b26 Remote Command Execution

2020-04-21 00:00:00

threatpost

Apache Tomcat Exploit Poised to Pounce, Stealing Files

2020-03-23 20:56:37

Users Urged to Uninstall WordPress Yuzo Plugin After Flaw Exploited

2019-04-11 17:19:40

Wipro Confirms Hack and Supply Chain Attacks on Customers

2019-04-16 18:01:54

nessus

NewStart CGSL CORE 5.05 / MAIN 5.05 : tomcat Vulnerability (NS-SA-2020-0085)

2020-12-09 00:00:00

RHEL 7 : tomcat (RHSA-2020:0855)

2020-03-18 00:00:00

CentOS 7 : tomcat (CESA-2020:0855)

2020-03-26 00:00:00

openvas

SUSE: Security Advisory (SUSE-SU-2020:0806-1)

2021-04-19 00:00:00

Fedora: Security Advisory for tomcat (FEDORA-2020-04ac174fa9)

2020-04-03 00:00:00

CentOS: Security Advisory for tomcat6 (CESA-2020:0912)

2020-03-26 00:00:00

osv

Improper Privilege Management in Tomcat

2020-06-15 18:51:21

BIT-tomcat-2020-1938

2024-03-06 11:11:29

CVE-2020-1938

2020-02-24 22:15:12

githubexploit

Exploit for Improper Privilege Management in Apache Tomcat

2021-04-27 14:57:30

Exploit for Improper Privilege Management in Apache Tomcat

2020-11-14 13:55:58

Exploit for CVE-2020-1938

2020-02-20 21:00:15

qualysblog

Automatically Discover, Prioritize and Remediate Apache Tomcat AJP File Inclusion Vulnerability (CVE-2020-1938) using Qualys VMDR

2020-03-06 01:11:07

Detect Apache Tomcat AJP File Inclusion Vulnerability (CVE-2020-1938) using Qualys WAS

2020-03-10 22:09:59

ibm

Security Bulletin: Vulnerability in Apache Tomcat affects IBM Spectrum Protect Plus (CVE-2020-1938)

2020-06-12 20:32:51

Security Bulletin: Open Source Apache Tomcat vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (CVE-2020-1938)

2020-07-24 22:19:08

Security Bulletin: IBM WebSphere Cast Iron Solution & App Connect Professional is affected by Apache Tomcat vulnerabilities.

2020-05-12 09:51:01

redhat

(RHSA-2020:0855) Important: tomcat security update

2020-03-17 13:10:46

(RHSA-2020:0912) Important: tomcat6 security update

2020-03-23 07:49:20

(RHSA-2020:2840) Important: tomcat security update

2020-07-07 08:35:21

oraclelinux

tomcat6 security update

2020-03-23 00:00:00

tomcat security update

2020-03-22 00:00:00

nvd

CVE-2020-1938

2020-02-24 22:15:12

cisa_kev

Apache Tomcat Improper Privilege Management Vulnerability

2022-03-03 00:00:00

centos

tomcat security update

2020-03-25 19:05:03

tomcat6 security update

2020-03-25 19:21:34

K53254186 : Apache Tomcat vulnerability CVE-2020-1938

2020-03-04 00:00:00

debiancve

CVE-2020-1938

2020-02-24 22:15:12

ubuntucve

CVE-2020-1938

2020-02-24 00:00:00

myhack58

Apache Tomcat from file contains to RCE exploit the principle of in-depth analysis-vulnerability warning-the black bar safety net

2020-03-17 00:00:00

fedora

[SECURITY] Fedora 32 Update: tomcat-9.0.31-2.fc32

2020-03-31 00:18:31

[SECURITY] Fedora 30 Update: tomcat-9.0.31-2.fc30

2020-04-02 09:19:40

[SECURITY] Fedora 31 Update: tomcat-9.0.31-2.fc31

2020-04-02 09:56:06

veracode

Authentication Bypass

2020-02-25 05:53:16

cgr

CVE-2020-1938 vulnerabilities

2024-05-19 03:07:16

huawei

Security Advisory - Apache Tomcat File Inclusion Vulnerability

2020-07-15 00:00:00

rapid7blog

Metasploit Wrap-Up

2020-12-04 19:27:53

github

Improper Privilege Management in Tomcat

2020-06-15 18:51:21

trendmicroblog

This Week in Security News: Operation Overtrap Targets Japanese Online Banking Users and Everything You Need to Know About Tax Scams

2020-03-13 12:40:26

redhatcve

CVE-2020-1938

2020-02-24 06:10:47

CVE-2020-1745

2020-02-26 04:10:51

checkpoint_advisories

Apache Tomcat AJP File Inclusion (CVE-2020-1938; CVE-2022-26377)

2020-02-25 00:00:00

amazon

Important: tomcat8

2020-03-09 19:21:00

Important: tomcat7

2020-03-09 19:20:00

Important: tomcat

2020-03-09 19:23:00

debian

[SECURITY] [DLA 2133-1] tomcat7 security update

2020-03-04 18:14:50

[SECURITY] [DSA 4673-1] tomcat8 security update

2020-05-03 18:29:38

[SECURITY] [DLA 2209-1] tomcat8 security update

2020-05-28 17:53:49

tomcat

Fixed in Apache Tomcat 7.0.100

2020-02-14 00:00:00

Fixed in Apache Tomcat 9.0.31

2020-02-11 00:00:00

Fixed in Apache Tomcat 8.5.51

2020-02-11 00:00:00

suse

Security update for apache2 (important)

2020-05-02 00:00:00

Security update for tomcat (important)

2020-03-15 00:00:00

thn

GhostCat: New High-Risk Vulnerability Affects Servers Running Apache Tomcat

2020-02-28 13:00:00

Critical Flaws Reported in Philips Vue PACS Medical Imaging Systems

2021-07-09 07:00:00

kaspersky

KLA11679 Multiple vulnerabilities in Apache Tomcat

2020-02-24 00:00:00

mageia

Updated tomcat packages fix security vulnerabilities

2020-03-10 22:04:50

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0285

2020-03-20 00:00:00

Critical Photon OS Security Update - PHSA-2020-0218

2020-03-09 00:00:00

Critical Photon OS Security Update - PHSA-2020-0285

2020-03-09 00:00:00

gentoo

Apache Tomcat: Multiple vulnerabilities

2020-03-19 00:00:00

atlassian

Upgrade Tomcat to 8.5.50 to fix CVE-2019-17563 & CVE-2019-12418

2020-01-15 15:29:54

The version of Apache Tomcat included with Jira Server is affected by CVE-2020-1935, CVE-2020-1938, CVE-2019-17569

2020-04-30 09:04:13

Upgrade Tomcat to version 8.5.75 - CVE-2020-9484/CVE-2022-23181

2022-01-27 13:24:58

symantec

Apache Tomcat Vulnerabilities Oct 2018 – Feb 2020

2020-05-12 19:02:01

hackerone

U.S. Dept Of Defense: Tomcat examples available for public, Disclosure Apache Tomcat version, Critical/High/Medium CVE

2020-05-14 19:38:44

trellix

Connected Healthcare: A Cybersecurity Battlefield We Must Win

2022-06-06 00:00:00

Connected Healthcare: A Cybersecurity Battlefield We Must Win

2022-06-06 00:00:00

rocky

pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update

2020-11-03 12:29:58

ics

Philips Vue PACS (Update C)

2023-02-21 12:00:00

kitploit

Vulmap - Web Vulnerability Scanning And Verification Tools

2020-12-25 11:30:00

oracle

Oracle Critical Patch Update Advisory - January 2021

2021-01-19 00:00:00

Oracle Critical Patch Update Advisory - July 2020

2020-07-14 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.9 High

AI Score

Confidence

High

0.974 High

EPSS

Percentile

99.9%

JSON

Related for NVD:CVE-2020-10569

prion2 cvelist2 attackerkb2 cve2 zdt1 packetstorm1 threatpost8 nessus50 openvas29 osv10 githubexploit9 qualysblog2 ibm7 redhat16 oraclelinux2 nvd1 cisa_kev1 centos2 f51 debiancve1 ubuntucve1 myhack581 fedora3 veracode1 cgr1 huawei1 rapid7blog1 github1 trendmicroblog1 redhatcve2 checkpoint_advisories1 amazon3 debian4 tomcat3 suse2 thn2 kaspersky1 mageia1 photon5 gentoo1 atlassian5 symantec1 hackerone1 trellix2 rocky1 ics1 kitploit1 oracle2