5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.038 Low
EPSS
Percentile
91.8%
03/30/2014
Warning
Multiple serious vulnerabilities have been found in Apache Tomcat. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions and read arbitrary files. Below is a complete list of vulnerabilities
Apache Tomcat 7 versions 7.0.52 and earlier
Update to latest version
DoS
CVE-2014-00755.0Critical
CVE-2014-00964.3Warning
CVE-2014-00994.3Warning
tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.53
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0075
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0096
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0099
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Apache-Tomcat/