Launchpad.net

CVE 2014-8111

Apache Tomcat Connectors (mod_jk) before 1.2.41 ignores JkUnmount rules for subtrees of previous JkMount rules, which allows remote attackers to access otherwise restricted artifacts via unspecified vectors.

See the CVE page on Mitre.org for more details.

References