Lucene search
PhotonPHSA-2021-0420HistoryJul 23, 2021 - 12:00 a.m.
Important Photon OS Security Update - PHSA-2021-0420
2021-07-2300:00:00
github.com
18
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.154 Low
EPSS
Percentile
95.7%
Updates of [‘linux’, ‘apache-tomcat’] packages of Photon OS have been released.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Photon | 1.0 | x86_64 | linux-oprofile | < 4.4.276-1.ph1 | linux-oprofile-4.4.276-1.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | linux | < 4.4.276-1.ph1 | linux-4.4.276-1.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | linux-esx | < 4.4.276-1.ph1 | linux-esx-4.4.276-1.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | linux-docs | < 4.4.276-1.ph1 | linux-docs-4.4.276-1.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | linux-esx-devel | < 4.4.276-1.ph1 | linux-esx-devel-4.4.276-1.ph1.x86_64.rpm |
| Photon | 1.0 | noarch | apache-tomcat | < 8.5.60-3.ph1 | apache-tomcat-8.5.60-3.ph1.noarch.rpm |
| Photon | 1.0 | noarch | linux-api-headers | < 4.4.276-1.ph1 | linux-api-headers-4.4.276-1.ph1.noarch.rpm |
| Photon | 1.0 | x86_64 | linux-tools | < 4.4.276-1.ph1 | linux-tools-4.4.276-1.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | linux-esx-docs | < 4.4.276-1.ph1 | linux-esx-docs-4.4.276-1.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | linux-sound | < 4.4.276-1.ph1 | linux-sound-4.4.276-1.ph1.x86_64.rpm |
Related
photon
photon
Moderate Photon OS Security Update - PHSA-2021-3.0-0277
2021-07-30 00:00:00
Important Photon OS Security Update - PHSA-2021-4.0-0066
2021-07-21 00:00:00
nessus
nessus
Photon OS 2.0: Apache PHSA-2021-2.0-0375
2021-08-10 00:00:00
Amazon Linux AMI : tomcat8 (ALAS-2021-1535)
2021-09-09 00:00:00
Photon OS 3.0: Apache PHSA-2021-3.0-0277
2021-08-10 00:00:00
freebsd
freebsd
tomcat -- HTTP request smuggling in multiple versions
2021-05-07 00:00:00
cve
cve
veracode
veracode
Request Smuggling
2021-07-30 03:29:00
f5
f5
K32469285 : Apache Tomcat vulnerability CVE-2021-33037
2021-08-06 00:00:00
ubuntucve
ubuntucve
CVE-2021-33037
2021-07-12 00:00:00
CVE-2021-38160
2021-08-07 00:00:00
ibm
ibm
Security Bulletin: IBM UrbanCode Build is affected by CVE-2021-33037
2022-02-09 16:28:28
Security Bulletin: IBM UrbanCode Release is affected by CVE-2021-33037
2022-01-25 07:45:09
seebug
seebug
Apache Tomcat HTTP请求走私(CVE-2021-33037)
2021-07-27 00:00:00
prion
prion
Cross site request forgery (csrf)
2021-07-12 15:15:00
Memory corruption
2021-08-07 04:15:00
Authentication flaw
2023-11-14 21:15:00
tomcat
tomcat
Fixed in Apache Tomcat 9.0.48
2021-06-15 00:00:00
Fixed in Apache Tomcat 8.5.68
2021-06-15 00:00:00
Fixed in Apache Tomcat 10.0.7
2021-06-15 00:00:00
redhatcve
redhatcve
CVE-2021-33037
2021-07-12 18:56:38
CVE-2021-38160
2021-08-09 19:53:23
atlassian
atlassian
kaspersky
kaspersky
KLA12218 SB vulnerability in Apache Tomcat
2021-06-15 00:00:00
amazon
amazon
Medium: tomcat8
2021-09-02 22:54:00
osv
osv
HTTP Request Smuggling in Apache Tomcat
2021-08-13 15:21:14
BIT-tomcat-2021-33037
2024-03-06 11:10:01
tomcat9 - security update
2021-08-09 00:00:00
debiancve
debiancve
CVE-2021-38160
2021-08-07 04:15:00
CVE-2021-33037
2021-07-12 15:15:00
cbl_mariner
cbl_mariner
CVE-2021-38160 affecting package kernel 5.10.189.1-1
2021-09-09 15:03:26
CVE-2021-38160 affecting package kernel 5.10.78.1-1
2022-04-09 06:52:47
qualysblog
qualysblog
Apache Tomcat HTTP Request Smuggling Vulnerability (CVE-2021-33037)
2021-10-27 12:07:58
github
github
HTTP Request Smuggling in Apache Tomcat
2021-08-13 15:21:14
debian
debian
[SECURITY] [DSA 4952-1] tomcat9 security update
2021-08-09 21:06:14
[SECURITY] [DLA 2733-1] tomcat8 security update
2021-08-05 21:40:35
vmware
vmware
hivepro
hivepro
VMware Unveils Critical Authentication Bypass Vulnerability in VCD Appliance
2023-11-17 08:07:39
packetstorm
packetstorm
VMware Cloud Director 10.5 Authentication Bypass
2024-03-13 00:00:00
zdt
zdt
VMware Cloud Director - Bypass identity verification Exploit
2023-12-08 00:00:00
VMware Cloud Director 10.5 - Bypass identity verification Exploit
2024-03-12 00:00:00
exploitdb
exploitdb
VMware Cloud Director 10.5 - Bypass identity verification
2024-03-12 00:00:00
suse
suse
Security update for tomcat (moderate)
2021-11-19 00:00:00
Security update for tomcat (moderate)
2021-11-16 00:00:00
ubuntu
ubuntu
Linux kernel (Raspberry Pi) vulnerabilities
2021-09-22 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.154 Low
EPSS
Percentile
95.7%
Related for PHSA-2021-0420