CPENameOperatorVersion
tomcat8eq8.5.14-1+deb9u1
tomcat8eq8.5.14-2
tomcat8eq8.5.38-2~bpo9+1
tomcat8eq8.5.16-1
tomcat8eq8.5.39-1
tomcat8eq8.5.21-1
tomcat8eq8.5.29-1~bpo9+1
tomcat8eq8.5.38-2
tomcat8eq8.5.28-1
tomcat8eq8.5.32-1

Name	Operator	Version
tomcat8	eq	8.5.14-1+deb9u1
tomcat8	eq	8.5.14-2
tomcat8	eq	8.5.38-2~bpo9+1
tomcat8	eq	8.5.16-1
tomcat8	eq	8.5.39-1
tomcat8	eq	8.5.21-1
tomcat8	eq	8.5.29-1~bpo9+1
tomcat8	eq	8.5.38-2
tomcat8	eq	8.5.28-1
tomcat8	eq	8.5.32-1

Rows per page:

1-10 of 431

osv 7

debian 3

nessus 43

openvas 17

suse 2

mageia 1

freebsd 2

cve 2

redhatcve 2

f5 2

ibm 13

ubuntucve 2

tomcat 7

debiancve 2

veracode 2

seebug 1

prion 2

atlassian 4

photon 8

kaspersky 2

amazon 2

github 2

qualysblog 1

redhat 4

gentoo 1

ubuntu 1

rosalinux 1

oracle 4

osv

tomcat9 - security update

2021-08-09 00:00:00

CVE-2021-30640

2021-07-12 15:15:08

Authentication Bypass by Alternate Name in Apache Tomcat

2021-08-13 15:21:24

debian

[SECURITY] [DLA 2733-1] tomcat8 security update

2021-08-05 21:40:35

[SECURITY] [DSA 4952-1] tomcat9 security update

2021-08-09 21:06:14

[SECURITY] [DSA 4984-1] tomcat9 security update

2021-10-14 20:33:21

nessus

Debian DSA-4952-1 : tomcat9 - security update

2021-08-10 00:00:00

Amazon Linux 2 : tomcat (ALASTOMCAT8.5-2023-007)

2023-09-27 00:00:00

Debian DLA-2733-1 : tomcat8 - LTS security update

2021-08-09 00:00:00

openvas

Debian: Security Advisory (DLA-2733-1)

2021-08-06 00:00:00

Debian: Security Advisory (DSA-4952-1)

2021-08-12 00:00:00

SUSE: Security Advisory (SUSE-SU-2021:3669-1)

2021-11-17 00:00:00

suse

Security update for tomcat (moderate)

2021-11-19 00:00:00

Security update for tomcat (moderate)

2021-11-16 00:00:00

mageia

Updated tomcat packages fix security vulnerability

2021-10-23 13:05:28

freebsd

tomcat -- HTTP request smuggling in multiple versions

2021-05-07 00:00:00

tomcat -- JNDI Realm Authentication Weakness in multiple versions

2021-04-08 00:00:00

cve

CVE-2021-33037

2021-07-12 15:15:00

CVE-2021-30640

2021-07-12 15:15:00

redhatcve

CVE-2021-30640

2021-07-12 19:46:17

CVE-2021-33037

2021-07-12 18:56:38

K35033051 : Tomcat vulnerability CVE-2021-30640

2021-07-28 00:00:00

K32469285 : Apache Tomcat vulnerability CVE-2021-33037

2021-08-06 00:00:00

ibm

Security Bulletin: Open Source Apache Tomcat vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (CVE-2021-30640)

2021-08-24 10:04:38

Security Bulletin: IBM Rational Build Forge is affected by Apache Tomcat version used in it. (CVE-2021-30640)

2022-07-07 16:39:00

Security Bulletin: IBM UrbanCode Release is affected by CVE-2021-33037

2022-01-25 07:45:09

ubuntucve

CVE-2021-30640

2021-07-12 00:00:00

CVE-2021-33037

2021-07-12 00:00:00

tomcat

Fixed in Apache Tomcat 9.0.46

2021-05-12 00:00:00

Fixed in Apache Tomcat 9.0.48

2021-06-15 00:00:00

Fixed in Apache Tomcat 8.5.68

2021-06-15 00:00:00

debiancve

CVE-2021-30640

2021-07-12 15:15:00

CVE-2021-33037

2021-07-12 15:15:00

veracode

Request Smuggling

2021-07-30 03:29:00

Access Restriction Bypass

2021-07-13 03:39:12

seebug

Apache Tomcat HTTP请求走私(CVE-2021-33037)

2021-07-27 00:00:00

prion

Cross site request forgery (csrf)

2021-07-12 15:15:00

Design/Logic Flaw

2021-07-12 15:15:00

atlassian

Request smuggling via a vulnerable version of Apache Tomcat - CVE-2021-33037

2022-01-06 02:02:04

Tomcat versions bundled with the Crowd product are vulnerable to CVE-2021-33037

2022-03-10 04:57:07

Upgrade the bundled version of Apache Tomcat to 8.5.68 or later

2021-07-14 11:35:20

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0420

2021-07-30 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0375

2021-07-30 00:00:00

Moderate Photon OS Security Update - PHSA-2021-0277

2021-07-30 00:00:00

kaspersky

KLA12218 SB vulnerability in Apache Tomcat

2021-06-15 00:00:00

KLA12217 SB vulnerability in Apache Tomcat

2021-05-12 00:00:00

amazon

Medium: tomcat8

2021-09-02 22:54:00

Low: tomcat7

2021-09-02 22:54:00

github

Authentication Bypass by Alternate Name in Apache Tomcat

2021-08-13 15:21:24

HTTP Request Smuggling in Apache Tomcat

2021-08-13 15:21:14

qualysblog

Apache Tomcat HTTP Request Smuggling Vulnerability (CVE-2021-33037)

2021-10-27 12:07:58

redhat

(RHSA-2021:4863) Important: Red Hat JBoss Web Server 5.6.0 Security release

2021-11-30 14:21:16

(RHSA-2021:4861) Important: Red Hat JBoss Web Server 5.6.0 Security release

2021-11-30 14:19:46

(RHSA-2022:1179) Important: Red Hat support for Spring Boot 2.5.10 update

2022-04-12 19:02:50

gentoo

Apache Tomcat: Multiple Vulnerabilities

2022-08-21 00:00:00

ubuntu

Tomcat vulnerabilities

2022-03-31 00:00:00

rosalinux

Advisory ROSA-SA-2023-2258

2023-10-21 16:49:43

oracle

Oracle Critical Patch Update Advisory - July 2021

2021-07-20 00:00:00

Oracle Critical Patch Update Advisory - October 2021

2021-10-19 00:00:00

Oracle Critical Patch Update Advisory - January 2022

2022-01-18 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N

6.2 Medium

AI Score

Confidence

High

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.123 Low

EPSS

Percentile

95.3%

JSON

Related for OSV:DLA-2733-1