Lucene search
ApacheCVELIST:CVE-2024-21733HistoryJan 19, 2024 - 10:29 a.m.
CVE-2024-21733 Apache Tomcat: Leaking of unrelated request bodies in default error page
2024-01-1910:29:04
CWE-209
apache
www.cve.org
apache tomcat
error page
sensitive information
vulnerability
upgrade
fix
cve-2024-21733
Generation of Error Message Containing Sensitive Information vulnerability in Apache Tomcat.This issue affects Apache Tomcat: from 8.5.7 through 8.5.63, from 9.0.0-M11 through 9.0.43.
Users are recommended to upgrade to version 8.5.64 onwards or 9.0.44 onwards, which contain a fix for the issue.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Apache Tomcat",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThanOrEqual": "8.5.63",
"status": "affected",
"version": "8.5.7",
"versionType": "semver"
},
{
"lessThanOrEqual": "9.0.43",
"status": "affected",
"version": "9.0.0-M11",
"versionType": "semver"
}
]
}
]Related
osv
osv
CVE-2024-21733
2024-01-19 11:15:08
Apache Tomcat vulnerable to Generation of Error Message Containing Sensitive Information
2024-01-19 12:30:18
BIT-tomcat-2024-21733
2024-03-06 11:07:26
packetstorm
packetstorm
Apache Tomcat 8.5.63 / 9.0.43 HTTP Response Smuggling
2024-02-01 00:00:00
zdt
zdt
Apache Tomcat 8.5.63 / 9.0.43 HTTP Response Smuggling Vulnerability
2024-02-01 00:00:00
openvas
openvas
Apache Tomcat Information Disclosure Vulnerability (Jan 2024) - Linux
2024-01-19 00:00:00
Apache Tomcat Information Disclosure Vulnerability (Jan 2024) - Windows
2024-01-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:0829-1)
2024-05-07 00:00:00
prion
prion
Information disclosure
2024-01-19 11:15:00
f5
f5
K000138392 : Apache Tomcat vulnerability CVE-2024-21733
2024-01-29 00:00:00
redhatcve
redhatcve
CVE-2024-21733
2024-01-19 15:37:41
github
github
cve
cve
CVE-2024-21733
2024-01-19 11:15:08
hackerone
hackerone
debiancve
debiancve
CVE-2024-21733
2024-01-19 11:15:08
nessus
nessus
SUSE SLES12 Security Update : tomcat (SUSE-SU-2024:0829-1)
2024-03-13 00:00:00
Amazon Linux 2 : tomcat (ALASTOMCAT9-2024-011)
2024-02-06 00:00:00
Apache Tomcat 8.5.0 < 8.5.64 multiple vulnerabilities
2024-04-29 00:00:00
veracode
veracode
Sensitive Information Disclosure
2024-01-22 05:49:53
nvd
nvd
CVE-2024-21733
2024-01-19 11:15:08
ubuntucve
ubuntucve
CVE-2024-21733
2024-01-19 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 9.0.44
2021-03-10 00:00:00
Fixed in Apache Tomcat 8.5.64
2021-03-10 00:00:00
ibm
ibm
redhat
redhat
(RHSA-2024:2707) Important: Red Hat Build of Apache Camel security update
2024-05-06 14:08:42
(RHSA-2024:3354) Important: Red Hat Fuse 7.13.0 release and security update
2024-05-23 22:44:00