Lucene search

payara -- Code execution via crafted PUT requests to JSPs

🗓️ 07 Aug 2017 00:00:00Reported by FreeBSDType

Code execution risk via crafted HTTP PUT request

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 97
OSV	CVE-2017-12615	19 Sep 201713:29	–	osv
OSV	GHSA-PJFR-QF3P-3Q25 When running Apache Tomcat on Windows with HTTP PUTs enabled it was possible to upload a JSP file to the server	17 Oct 201816:30	–	osv
OSV	RHSA-2017:3080 Red Hat Security Advisory: tomcat6 security update	16 Sep 202400:25	–	osv
OSV	RHSA-2017:3081 Red Hat Security Advisory: tomcat security update	16 Sep 202400:25	–	osv
OSV	SUSE-SU-2017:3059-1 Security update for tomcat	23 Nov 201716:16	–	osv
OSV	RHSA-2017:3113 Red Hat Security Advisory: Red Hat JBoss Web Server security and bug fix update	16 Sep 202400:25	–	osv
OSV	RHSA-2018:0466 Red Hat Security Advisory: Red Hat JBoss Web Server 3.1.0 Service Pack 2 security update	16 Sep 202400:32	–	osv
Cvelist	CVE-2017-12615	19 Sep 201713:00	–	cvelist
CVE	CVE-2017-12615	19 Sep 201713:29	–	cve
F5 Networks	K85088617 : Apache Tomcat vulnerability CVE-2017-12615	25 Sep 201700:00	–	f5

OS	OS Version	Architecture	Package	Package Version	Filename
FreeBSD	any	noarch	payara	4.1.2.174	UNKNOWN

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Aug 2017 00:00Current

2Low risk

Vulners AI Score2

CVSS26.8

CVSS38.1

EPSS0.9436