Moderate: Red Hat Security Advisory: tomcat5 security update

🗓️ 20 Dec 2011 17:16:00Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 48 Views

RHSA-2011:1845 Apache Tomcat security update with multiple vulnerabilitie

Reporter	Title	Published	Views	Family All 366
IBM Security Bulletins	Security Bulletin: SONAS Update Includes Fixes for Multiple Vendor Security Vulnerabilities	26 Sep 202204:23	–	ibm
IBM Security Bulletins	Security Bulletin: Apache Log4j Vulnerabilities Affect IBM Sterling B2B Integrator	6 Oct 202114:56	–	ibm
IBM Security Bulletins	Security Bulletin: Storwize V7000 Unified V1.3.2.3 and V1.4.0.0 Include Fixes for Multiple Vendor Security Vulnerabilities	26 Sep 202204:23	–	ibm
FreeBSD	tomcat -- Cross-site scripting vulnerability	12 Nov 201000:00	–	freebsd
Tenable Nessus	Apache Tomcat 5.5.x < 5.5.32 HTML Manager Interface XSS	11 Feb 201100:00	–	nessus
Tenable Nessus	Apache Tomcat 6.0.x < 6.0.30 Multiple Vulnerabilities	11 Feb 201100:00	–	nessus
Tenable Nessus	Apache Tomcat 7.0.x < 7.0.4 SecurityManager Local Security Bypass	13 Feb 201100:00	–	nessus
Tenable Nessus	Apache Tomcat 7.0.x < 7.0.6 Manager Interface XSS	13 Feb 201100:00	–	nessus
Tenable Nessus	Apache Tomcat 7.0.x < 7.0.17 Multiple Vulnerabilities	1 Aug 201100:00	–	nessus
Tenable Nessus	Apache Tomcat 6.0.x < 6.0.33 Multiple Vulnerabilities	30 Aug 201100:00	–	nessus

Source	Link
tomcat	www.tomcat.apache.org/security-5.html
access	www.access.redhat.com/security/updates/classification/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

28 Jan 2026 22:34Current

6.2Medium risk

Vulners AI Score6.2

CVSS 25

EPSS0.25792

apache tomcat security update web applications cross-site scripting http digest authentication memoryuserdatabase