VDB

GCVE-110-MAGEIA-2015-254

GCVE-110-MAGEIA-2015-254
Advisory Published
Vulnetix · Advisory published July 1, 2015
An information disclosure flaw due to incorrect JkMount/JkUnmount directives processing was found in the Apache 2 module mod_jk to forward requests from the Apache web server to Tomcat. A JkUnmount rule for a subtree of a previous JkMount rule could be ignored. This could allow a remote attacker to potentially access a private artifact in a tree that would otherwise not be accessible to them (CVE-2014-8111).

Affected Products

VendorProductVersionsPlatforms
Mageiaapache-mod_jk1.2.37-6.2.mga4 (unaffected), 0 (affected)

Browse GCVE Records

73,280 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›