Internet Bug Bounty: CVE-2024-21733 Apache Tomcat HTTP Request Smuggling (Client- Side Desync) (CWE: 444)

🗓️ 19 Jan 2024 18:09:45Reported by xer0dayzType

Internet Bug Bounty: Apache Tomcat CVE-2024-21733 HTTP Request Smuggling (CWE: 444) Fix in Version 8.5.64 & 9.0.4

Reporter	Title	Published	Views	Family All 113
0day.today	Apache Tomcat 8.5.63 / 9.0.43 HTTP Response Smuggling Vulnerability	1 Feb 202400:00	–	zdt
GithubExploit	Exploit for Generation of Error Message Containing Sensitive Information in Apache Tomcat	15 Aug 202409:47	–	githubexploit
IBM Security Bulletins	Security Bulletin: IBM DevOps Release 7.0.0.1 addresses multiple vulnerabilities.	27 Mar 202417:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM DevOps Build 7.0.0.1 addresses multiple vulnerabilities.	27 Mar 202417:19	–	ibm
IBM Security Bulletins	Security Bulletin: IBM® Engineering Requirements Management DOORS/DWA vulnerabilities addressed in 9.7.2.8	18 Oct 202407:56	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Apache Tomcat affects IBM SAN Volume Controller, IBM Storwize, IBM Storage Virtualize and IBM FlashSystem products (CVE-2023-45648, CVE-2023-42795, CVE-2023-46589, CVE-2024-21733)	30 Apr 202416:46	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilites in IBM Rational Build Forge.	2 Apr 202413:12	–	ibm
Tenable Nessus	Amazon Linux 2 : tomcat (ALASTOMCAT8.5-2024-017)	6 Feb 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : tomcat (ALASTOMCAT9-2024-011)	6 Feb 202400:00	–	nessus
Tenable Nessus	Amazon Linux AMI : tomcat8 (ALAS-2021-1547)	5 Nov 202100:00	–	nessus