Lucene search

K
cvelistRedhatCVELIST:CVE-2011-3376
HistoryNov 11, 2011 - 9:00 p.m.

CVE-2011-3376

2011-11-1121:00:00
redhat
www.cve.org
8

AI Score

6.2

Confidence

Low

EPSS

0

Percentile

5.1%

org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat 7.x before 7.0.22 does not properly restrict ContainerServlets in the Manager application, which allows local users to gain privileges by using an untrusted web application to access the Manager applicationโ€™s functionality.

AI Score

6.2

Confidence

Low

EPSS

0

Percentile

5.1%