Lucene search

Basic search
Lucene search
Search by product

Vendors

Products

ChainguardCHAINGUARD:CVE-2019-17563

HistoryApr 28, 2024 - 3:20 a.m.

CVE-2019-17563 vulnerabilities

2024-04-2803:20:57

Chainguard

packages.cgr.dev

vulnerabilities

cve-2019-17563

spark-3.5.0-compat

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.8%

JSON

Vulnerabilities for packages: spark-3.5.0-compat

CPENameOperatorVersion
spark-3.5.0-compatle3.5.0-r2

CPE	Name	Operator	Version
	spark-3.5.0-compat	le	3.5.0-r2

osv 6

cve 1

nessus 36

github 1

openvas 18

f5 1

symantec 2

kaspersky 1

ubuntucve 1

debiancve 1

veracode 1

prion 1

tomcat 3

redhatcve 1

amazon 2

redhat 7

mageia 1

ibm 6

debian 4

ubuntu 1

centos 1

suse 1

oraclelinux 1

gentoo 1

atlassian 4

photon 6

hackerone 1

oracle 3

osv

In Apache Tomcat, when using FORM authentication there was a narrow window where an attacker could perform a session fixation attack

2019-12-26 18:22:26

CVE-2019-17563

2019-12-23 17:15:11

tomcat7 - security update

2020-01-27 00:00:00

cve

CVE-2019-17563

2019-12-23 17:15:00

nessus

Apache Tomcat 8.5.0 < 8.5.50 Privilege Escalation Vulnerability

2019-12-27 00:00:00

MySQL Enterprise Monitor 4.0.11.x < 4.0.12.5341 / 8.0.18.x < 8.0.20.1227(Apr 2020 CPU)

2020-07-02 00:00:00

Apache Tomcat 9.0.0.M1 < 9.0.30 Privilege Escalation Vulnerability

2019-12-27 00:00:00

github

In Apache Tomcat, when using FORM authentication there was a narrow window where an attacker could perform a session fixation attack

2019-12-26 18:22:26

openvas

Apache Tomcat Session Fixation Vulnerability (Dec 2019) - Linux

2020-01-07 00:00:00

Apache Tomcat Session Fixation Vulnerability (Dec 2019) - Windows

2020-01-07 00:00:00

Huawei EulerOS: Security Advisory for tomcat (EulerOS-SA-2020-1182)

2020-02-25 00:00:00

K24551552 : Apache Tomcat vulnerability CVE-2019-17563

2020-01-23 00:00:00

symantec

Apache Tomcat CVE-2019-17563 Session Fixation Vulnerability

2019-12-18 00:00:00

Apache Tomcat Vulnerabilities Oct 2018 – Feb 2020

2020-05-12 19:02:01

kaspersky

KLA11626 SB vulnerability in Apache Tomcat

2019-12-12 00:00:00

ubuntucve

CVE-2019-17563

2019-12-23 00:00:00

debiancve

CVE-2019-17563

2019-12-23 17:15:00

veracode

Session Fixation

2019-12-19 08:29:44

prion

Session fixation

2019-12-23 17:15:00

tomcat

Fixed in Apache Tomcat 9.0.30

2019-12-12 00:00:00

Fixed in Apache Tomcat 8.5.50

2019-12-12 00:00:00

Fixed in Apache Tomcat 7.0.99

2019-12-17 00:00:00

redhatcve

CVE-2019-17563

2019-12-20 18:38:45

amazon

Medium: tomcat8

2020-01-14 18:18:00

Important: tomcat

2023-05-11 17:49:00

redhat

(RHSA-2021:1030) Low: tomcat security update

2021-03-30 07:25:02

(RHSA-2021:0882) Low: tomcat security update

2021-03-16 13:08:14

(RHSA-2020:4004) Important: tomcat security and bug fix update

2020-09-29 07:50:50

mageia

Updated tomcat packages fix security vulnerabilities

2020-01-28 10:52:40

ibm

Security Bulletin: IBM Integration Bus affected by multiple Apache Tomcat (core only) vulnerabilities.

2020-04-24 04:47:22

Security Bulletin: Open Source Apache Tomcat vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (TADDM)(CVE-2019-12418, CVE-2019-17563)

2020-07-24 22:19:08

Security Bulletin: Vulnerabilities in Apache Tomcat affects IBM Platform Symphony

2020-02-11 07:10:49

debian

[SECURITY] [DLA 2077-1] tomcat7 security update

2020-01-27 23:13:25

[SECURITY] [DLA 2209-1] tomcat8 security update

2020-05-28 17:53:49

[SECURITY] [DSA 4596-1] tomcat8 security update

2019-12-27 22:15:49

ubuntu

Tomcat vulnerabilities

2020-01-27 00:00:00

centos

tomcat security update

2020-10-20 19:04:26

suse

Security update for tomcat (important)

2020-01-14 00:00:00

oraclelinux

tomcat security and bug fix update

2020-10-06 00:00:00

gentoo

Apache Tomcat: Multiple vulnerabilities

2020-03-19 00:00:00

atlassian

Upgrade Tomcat to 8.5.50 to fix CVE-2019-17563 & CVE-2019-12418

2020-01-15 15:29:54

Upgrade Tomcat to 8.5.50 to fix CVE-2019-17563 & CVE-2019-12418

2020-01-15 15:29:54

The version of Apache Tomcat included with Jira Server is affected by CVE-2020-1935, CVE-2020-1938, CVE-2019-17569

2020-04-30 09:04:13

photon

Important Photon OS Security Update - PHSA-2020-0051

2020-01-23 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0200

2020-01-14 00:00:00

Important Photon OS Security Update - PHSA-2020-3.0-0051

2020-01-23 00:00:00

hackerone

U.S. Dept Of Defense: Tomcat examples available for public, Disclosure Apache Tomcat version, Critical/High/Medium CVE

2020-05-14 19:38:44

oracle

Oracle Critical Patch Update Advisory - January 2021

2021-01-19 00:00:00

Oracle Critical Patch Update Advisory - July 2020

2020-07-14 00:00:00

Oracle Critical Patch Update Advisory - April 2020

2020-04-14 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.8%

JSON

Related for CHAINGUARD:CVE-2019-17563