NOMISEC-Warelock/cve-2020-1938

NOMISEC WORKING POC

Exploit for CVE-2020-1938 - Apache Geode < 7.0.100 - Remote Code Execution

AI Analysis

This is a Python-based proof-of-concept exploit for CVE-2020-1938, also known as the 'Ghostcat' vulnerability, which affects Apache Tomcat's AJP protocol. The exploit allows for local file inclusion (LFI) and potential remote code execution (RCE) by manipulating AJP request attributes.

Attack Type

LFI | RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type remote

Files 1

https://github.com/Warelock/cve-2020-1938

Stars 2

Forks 0

Last Push Apr 14, 2024

Authors

YDHCUI Warelock

Vulnerability

CVE-2020-1938

Apache Geode < 7.0.100 - Remote Code Execution

CRITICAL KEV

CVSS 9.8