Lucene search

K
nessusThis script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_112712
HistoryMar 05, 2021 - 12:00 a.m.

Apache Tomcat 7.0.x < 7.0.108 Multiple Vulnerabilities

2021-03-0500:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
178

The version of Apache Tomcat installed on the remote host is 10.0.0-M1 to 10.0.1, 9.0.0.M1 to 9.0.42, 8.5.0 to 8.5.62 or 7.0.0 to 7.0.107. It is, therefore, affected by a remote code execution due to an incomplete fix for CVE-2020-9484 and an information diclosure due to request mix-up with h2c.

Note that the scanner has not attempted to exploit these issues but has instead relied only on the application’s self-reported version number.

No source data
VendorProductVersion
aapachetomcat
Related for WEB_APPLICATION_SCANNING_112712