Lucene search
+L

42 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2020-13943

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If an HTTP/2 client connecting to Apache Tomcat 10.0.0-M1 to 10.0.0-M7, 9.0.0.M1 to 9.0.37 or 8.5.0 to 8.5.57 exceeded the agreed maximum number of concurrent...

4.3CVSS6.7AI score0.57286EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.46 views

Apache Tomcat 8.5.0 < 8.5.58

The version of Tomcat installed on the remote host is prior to 8.5.58. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.5.58security-8 advisory. - If an HTTP/2 client connecting to Apache Tomcat 10.0.0-M1 to 10.0.0-M7, 9.0.0.M1 to 9.0.37 or 8.5.0 to 8.5.57...

4.3CVSS6.9AI score0.57286EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.50 views

RHEL 6 : tomcat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tomcat: request mixup CVE-2022-25762 - When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 ...

8.5AI score0.73139EPSS
Exploits29References15
Amazon
Amazon
added 2023/09/25 12:0 a.m.4 views

Medium: tomcat

Issue Overview: If an HTTP/2 client connecting to Apache Tomcat 10.0.0-M1 to 10.0.0-M7, 9.0.0.M1 to 9.0.37 or 8.5.0 to 8.5.57 exceeded the agreed maximum number of concurrent streams for a connection in violation of the HTTP/2 protocol, it was possible that a subsequent request made on that...

4.3CVSS6.8AI score0.57286EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 6:35 p.m.39 views

K31573032: Tomcat vulnerability CVE-2020-13943

Security Advisory Description If an HTTP/2 client connecting to Apache Tomcat 10.0.0-M1 to 10.0.0-M7, 9.0.0.M1 to 9.0.37 or 8.5.0 to 8.5.57 exceeded the agreed maximum number of concurrent streams for a connection in violation of the HTTP/2 protocol, it was possible that a subsequent request made...

4.3CVSS7.2AI score0.57286EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:58 a.m.5 views

SUSE CVE-2020-13943

If an HTTP/2 client connecting to Apache Tomcat 10.0.0-M1 to 10.0.0-M7, 9.0.0.M1 to 9.0.37 or 8.5.0 to 8.5.57 exceeded the agreed maximum number of concurrent streams for a connection in violation of the HTTP/2 protocol, it was possible that a subsequent request made on that connection could...

5.3CVSS6.8AI score0.57286EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2022/04/01 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-5360-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.75353EPSS
Exploits17References3
Atlassian
Atlassian
added 2021/08/16 3:40 a.m.100 views

Jira is affected by Tomcat CVE-2020-13943

Affected versions of Atlassian Jira Server and Data Center used versions of Apache Tomcat that were vulnerable to CVE-2020-13943|https://vulners.com/cve/CVE-2020-13943. The affected versions of Jira Server and Data Center are before version 8.5.14, from version 8.6.0 before 8.13.6, and from versi...

4.3CVSS4.8AI score0.57286EPSS
Exploits0Affected Software1
Atlassian
Atlassian
added 2021/08/16 3:40 a.m.68 views

Jira is affected by Tomcat CVE-2020-13943

Affected versions of Atlassian Jira Server and Data Center used versions of Apache Tomcat that were vulnerable to CVE-2020-13943|https://vulners.com/cve/CVE-2020-13943. The affected versions of Jira Server and Data Center are before version 8.5.14, from version 8.6.0 before 8.13.6, and from versi...

4.3CVSS5.4AI score0.57286EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/06/21 12:0 a.m.41 views

Apache Tomcat 10.0.0.M1 < 10.0.0.M8

The version of Tomcat installed on the remote host is prior to 10.0.0.M8. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat10.0.0-m8security-10 advisory. - If an HTTP/2 client connecting to Apache Tomcat 10.0.0-M1 to 10.0.0-M7, 9.0.0.M1 to 9.0.37 or 8.5.0 to...

4.3CVSS6.9AI score0.57286EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2020:3069-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.1AI score0.57286EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2020:3068-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.1AI score0.57286EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/04 5:48 p.m.200 views

Security Bulletin: Apache Tomcat as used by IBM QRadar SIEM is vulnerable to information disclosure (CVE-2020-13943)

Summary Apache Tomcat as used by IBM QRadar SIEM is vulnerable to information disclosure Vulnerability Details CVEID: CVE-2020-13943 DESCRIPTION: Apache Tomcat could allow a remote attacker to obtain sensitive information, caused by a flaw when HTTP/2 client exceeded the agreed maximum number of...

4.3CVSS0.5AI score0.57286EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.31 views

SUSE: Security Advisory (SUSE-SU-2021:0040-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.57286EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2021/02/11 1:51 p.m.124 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Web Server 5.4.1 Security Update

Updated Red Hat JBoss Web Server 5.4.1 packages are now available for Red Hat Enterprise Linux 7, and Red Hat Enterprise Linux 8. Red Hat Product Security has rated this release as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

7.5CVSS6.7AI score0.57286EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2021/02/11 1:51 p.m.92 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Web Server 5.4.1 Security Update

Red Hat JBoss Web Server 5.4.1 zip release is now available for Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8 and Windows. Red Hat Product Security has rated this release as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detaile...

7.5CVSS6.7AI score0.57286EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2021/02/11 12:0 a.m.40 views

RHEL 7 / 8 : Red Hat JBoss Web Server 5.4.1 Security Update (Moderate) (RHSA-2021:0494)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0494 advisory. Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the...

7.5CVSS7.2AI score0.57286EPSS
Exploits3References11
Tenable Nessus
Tenable Nessus
added 2021/01/25 12:0 a.m.38 views

Debian DSA-4835-1 : tomcat9 - security update

Two vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4835. The text itself is copyright C...

7.5CVSS6.9AI score0.57286EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/16 5:45 p.m.20 views

Security Bulletin: Apache Tomcat vulnerabilities affect IBM Watson Text to Speech and Speech to Text (IBM Watson Speech Services for Cloud Pak for Data 1.2)

Summary Apache Tomcat vulnerabilities, listed below, affect IBM Watson Text to Speech and Speech to Text IBM Watson Speech Services for Cloud Pak for Data 1.2 Vulnerability Details CVEID: CVE-2020-13943 DESCRIPTION: Apache Tomcat could allow a remote attacker to obtain sensitive information, caus...

4.3CVSS4.7AI score0.57286EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/11/10 12:0 a.m.40 views

Photon OS 3.0: Apache PHSA-2020-3.0-0161

An update of the apache package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0161. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid142655;...

4.3CVSS7.5AI score0.57286EPSS
Exploits0References2
Rows per page
Query Builder