Lucene search

K

CVE-2024-56337 Apache Tomcat: RCE due to TOCTOU issue in JSP compilation - CVE-2024-50379 mitigation was incomplete

🗓️ 20 Dec 2024 15:54:28Reported by apacheType 
cvelist
 cvelist
🔗 www.cve.org👁 31 Views

Apache Tomcat RCE vulnerability due to incomplete CVE-2024-50379 mitigation and TOCTOU issue.

Show more
Related
Affected
Refs
ReporterTitlePublishedViews
Family
RedhatCVE
CVE-2024-56337
20 Dec 202417:20
redhatcve
RedhatCVE
CVE-2024-50379
17 Dec 202422:21
redhatcve
Github Security Blog
Apache Tomcat Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability
20 Dec 202418:31
github
Github Security Blog
Apache Tomcat Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability
17 Dec 202415:31
github
Debian CVE
CVE-2024-56337
20 Dec 202416:15
debiancve
Debian CVE
CVE-2024-50379
17 Dec 202413:15
debiancve
CVE
CVE-2024-56337
20 Dec 202416:15
cve
CVE
CVE-2024-50379
17 Dec 202413:15
cve
OSV
BIT-tomcat-2024-56337
24 Dec 202419:21
osv
OSV
UBUNTU-CVE-2024-56337
20 Dec 202416:15
osv
Rows per page
[
  {
    "defaultStatus": "unaffected",
    "product": "Apache Tomcat",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThanOrEqual": "11.0.1",
        "status": "affected",
        "version": "11.0.0-M1",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "10.1.33",
        "status": "affected",
        "version": "10.1.0-M1",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.0.97",
        "status": "affected",
        "version": "9.0.0.M1",
        "versionType": "semver"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo