Lucene search
ApacheCVELIST:CVE-2023-41080HistoryAug 25, 2023 - 8:39 p.m.
CVE-2023-41080 Apache Tomcat: Open redirect with FORM authentication
2023-08-2520:39:36
CWE-601
apache
www.cve.org
1
apache tomcat
open redirect
form authentication
url redirection
vulnerability
URL Redirection to Untrusted Site (‘Open Redirect’) vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.0.12, from 9.0.0-M1 through 9.0.79 and from 8.5.0 through 8.5.92.
The vulnerability is limited to the ROOT (default) web application.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Apache Tomcat",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "11.0.0-M10",
"status": "affected",
"version": "11.0.0-M1",
"versionType": "semver"
},
{
"lessThanOrEqual": "10.0.12",
"status": "affected",
"version": "10.1.0-M1",
"versionType": "semver"
},
{
"lessThanOrEqual": "9.0.79",
"status": "affected",
"version": "9.0.0-M1",
"versionType": "semver"
},
{
"lessThanOrEqual": "8.5.92",
"status": "affected",
"version": "8.5.0",
"versionType": "semver"
}
]
}
]Related
nessus
nessus
Amazon Linux 2 : tomcat (ALASTOMCAT8.5-2023-015)
2023-09-27 00:00:00
Amazon Linux 2 : tomcat (ALASTOMCAT9-2023-009)
2023-09-27 00:00:00
SUSE SLES12 Security Update : tomcat (SUSE-SU-2023:3987-1)
2023-10-06 00:00:00
cgr
cgr
CVE-2023-41080 vulnerabilities
2024-05-19 03:07:16
openvas
openvas
Apache Tomcat Open Redirect Vulnerability (Aug 2023) - Windows
2023-08-28 00:00:00
Apache Tomcat Open Redirect Vulnerability (Aug 2023) - Linux
2023-08-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:3987-1)
2023-10-06 00:00:00
prion
prion
Open redirect
2023-08-25 21:15:00
ibm
ibm
Security Bulletin: Apache Tomcat is vulnerable to CVE-2023-41080 used in IBM Maximo Application Suite - Monitor Component
2023-12-01 19:31:17
tomcat
tomcat
Fixed in Apache Tomcat 9.0.80
2023-08-25 00:00:00
Fixed in Apache Tomcat 8.5.93
2023-08-25 00:00:00
Fixed in Apache Tomcat 10.1.13
2023-08-25 00:00:00
cnvd
cnvd
Apache Tomcat Open Redirect Vulnerability (CNVD-2023-80565)
2023-08-29 00:00:00
redhatcve
redhatcve
CVE-2023-41080
2023-08-30 15:16:29
nvd
nvd
CVE-2023-41080
2023-08-25 21:15:09
osv
osv
Apache Tomcat Open Redirect vulnerability
2023-08-25 21:30:48
BIT-tomcat-2023-41080
2024-03-06 11:08:22
CVE-2023-41080
2023-08-25 21:15:09
kaspersky
kaspersky
KLA52554 SB vulnerability in Apache Tomcat
2023-08-25 00:00:00
ubuntucve
ubuntucve
CVE-2023-41080
2023-08-25 00:00:00
cve
cve
CVE-2023-41080
2023-08-25 21:15:09
github
github
Apache Tomcat Open Redirect vulnerability
2023-08-25 21:30:48
debiancve
debiancve
CVE-2023-41080
2023-08-25 21:15:09
f5
f5
K000136011 : Apache Tomcat Open Redirect vulnerability CVE-2023-41080
2023-08-29 00:00:00
atlassian
atlassian
Upgrade Tomcat to fix CVE-2023-41080
2023-09-07 01:11:07
veracode
veracode
Open Redirect
2023-08-29 11:34:15
amazon
amazon
Important: tomcat8
2023-10-12 15:48:00
redhat
redhat
(RHSA-2024:1324) Important: Red Hat JBoss Web Server 6.0.1 release and security update
2024-03-18 14:35:54
(RHSA-2024:1325) Important: Red Hat JBoss Web Server 6.0.1 release and security update
2024-03-18 14:38:33
(RHSA-2024:0125) Moderate: tomcat security update
2024-01-10 09:29:51
almalinux
almalinux
Moderate: tomcat security update
2024-01-25 00:00:00
Moderate: tomcat security update
2024-01-10 00:00:00
oraclelinux
oraclelinux
tomcat security update
2024-01-25 00:00:00
tomcat security update
2024-01-11 00:00:00
debian
debian
[SECURITY] [DSA 5521-1] tomcat10 security update
2023-10-10 22:09:33
[SECURITY] [DLA 3617-1] tomcat9 security update
2023-10-13 13:58:32
[SECURITY] [DSA 5522-1] tomcat9 security update
2023-10-10 22:11:02
rosalinux
rosalinux
Advisory ROSA-SA-2024-2418
2024-05-14 08:49:00
ics
ics
Siemens SINEC NMS
2024-02-15 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00