KLA11679Multiple vulnerabilities in Apache Tomcat

2020-02-24T00:00:00
ID KLA11679
Type kaspersky
Reporter Kaspersky Lab
Modified 2020-05-22T00:00:00

Description

Detect date:

02/24/2020

Severity:

Warning

Description:

Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code.

Affected products:

Apache Tomcat 9.x earlier than 9.0.30
Apache Tomcat 7.x earlier than 7.0.100
Apache Tomcat 8.5.x earlier than 8.5.51

Solution:

Update to the latest version
Tomcat 9 Software Downloads
Tomcat 8 Software Downloads
Tomcat 7 Software Downloads

Original advisories:

Apache Tomcat 9.x vulnerabilities
Apache Tomcat 8.x vulnerabilities
Apache Tomcat /.x vulnerabilities

Impacts:

ACE

Related products:

Apache Tomcat

CVE-IDS:

CVE-2019-175690.0Unknown
CVE-2020-19380.0Unknown
CVE-2020-19350.0Unknown