KLA12217 SB vulnerability in Apache Tomcat

🗓️ 12 May 2021 00:00:00Reported by Kaspersky LabType

A security bypass vulnerability found in Apache Tomcat can be exploited by malicious users to bypass security restrictions

Reporter	Title	Published	Views	Family All 172
IBM Security Bulletins	Security Bulletin: IBM UrbanCode Release is affected by CVE-2021-30640	25 Jan 202207:56	–	ibm
IBM Security Bulletins	Security Bulletin: IBM UrbanCode Build is affected by CVE-2021-30640	9 Feb 202216:08	–	ibm
IBM Security Bulletins	Security Bulletin: Open Source Apache Tomcat vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (CVE-2021-30640)	24 Aug 202110:04	–	ibm
IBM Security Bulletins	Security Bulletin: Cloud Pak for Security contains packages that have multiple vulnerabilities	1 Apr 202216:38	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Rational Build Forge is affected by Apache Tomcat version used in it. (CVE-2021-30640)	7 Jul 202216:39	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities	11 Oct 202118:12	–	ibm
Tenable Nessus	Apache Tomcat < 10.0.6 Vulnerability	12 Jul 202100:00	–	nessus
Tenable Nessus	Apache Tomcat < 8.5.66 Vulnerability	12 Jul 202100:00	–	nessus
Tenable Nessus	Apache Tomcat < 9.0.46 Vulnerability	12 Jul 202100:00	–	nessus
Tenable Nessus	Amazon Linux 2 : tomcat (ALASTOMCAT8.5-2023-007)	27 Sep 202300:00	–	nessus

Source	Link
tomcat	www.tomcat.apache.org/security-8.html
tomcat	www.tomcat.apache.org/security-9.html
tomcat	www.tomcat.apache.org/security-10.html
threats	www.threats.kaspersky.com/en/product/Apache-Tomcat/
statistics	www.statistics.securelist.com/

25 Jan 2024 00:00Current

7.7High risk

Vulners AI Score7.7

CVSS 25.8

CVSS 3.16.5

EPSS0.00123