Lucene search
K

49 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.10 views

TencentOS Server 3: tomcat (TSSA-2024:0045)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0045 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

6.1CVSS7.3AI score0.05972EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.11 views

TencentOS Server 4: tomcat (TSSA-2024:0243)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0243 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.5CVSS7.3AI score0.99999EPSS
Exploits22References9
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/26 4:4 a.m.62 views

Security Bulletin: QRadar Suite Software includes components with multiple known vulnerabilities

Summary QRadar Suite Software includes components with known vulnerabilities. These have been updated in the latest release and vulnerabilities have been addressed. Please follow the instructions in the Remediation/Fixes section below to update to the latest version. Vulnerability Details...

9.8CVSS9.8AI score0.15014EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/26 3:58 a.m.74 views

Security Bulletin: IBM Cloud Pak for Network Automation 2.6.5 fixes multiple security vulnerabilities

Summary IBM Cloud Pak for Network Automation 2.6.5 fixes multiple security vulnerabilities, listed in the CVEs below. Vulnerability Details CVEID:CVE-2002-0080 DESCRIPTION: rsync could allow a remote attacker to gain elevated privileges on the system. rsync fails to drop privileges for...

7.5CVSS9.4AI score0.99999EPSS
Exploits23Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2023-41080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - URL Redirection to Untrusted Site 'Open Redirect' vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1...

6.1CVSS6.8AI score0.05972EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/07/12 12:0 a.m.33 views

RHEL 6 : tomcat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tomcat: EncryptInterceptor documentation mistake CVE-2022-29885 - tomcat: Open Redirect vulnerability in...

7.5CVSS8.2AI score0.73139EPSS
Exploits7References4
Tenable Nessus
Tenable Nessus
added 2024/05/24 12:0 a.m.41 views

Oracle Linux 9 : tomcat (ELSA-2024-3307)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3307 advisory. - Resolves: RHEL-31048 tomcat: Apache Tomcat: WebSocket DoS with incomplete closing handshake CVE-2024-23672 - Resolves: RHEL-31032 tomcat: : Apache...

7.5CVSS7.7AI score0.23072EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2024/03/18 2:52 p.m.42 views

Important: Red Hat Security Advisory: Red Hat JBoss Web Server 6.0.1 release and security update

Red Hat JBoss Web Server 6.0.1 zip release is now available for Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 9, and Windows Server. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

7.5CVSS6.9AI score0.23072EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2024/03/18 12:0 a.m.34 views

RHEL 8 / 9 : Red Hat JBoss Web Server 6.0.1 (RHSA-2024:1324)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1324 advisory. Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the...

7.5CVSS7.6AI score0.23072EPSS
Exploits1References9
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/31 11:32 p.m.37 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to phishing attacks in Apache Tomcat [CVE-2023-41080]

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to phishing attacks in Apache Tomcat, caused by an open redirect vulnerability in the FORM authentication feature CVE-2023-41080. Apache Tomcat is used as a component of our Speech microservices. This...

6.1CVSS6.6AI score0.05972EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2024/01/25 10:59 a.m.52 views

Moderate: Red Hat Security Advisory: tomcat security update

An update for tomcat is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

6.1CVSS6.8AI score0.05972EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.39 views

RHEL 9 : tomcat (RHSA-2024:0474)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0474 advisory. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Open Redirect...

6.1CVSS7.4AI score0.05972EPSS
Exploits2References11
RedHat Linux
RedHat Linux
added 2024/01/10 11:32 a.m.52 views

Moderate: Red Hat Security Advisory: tomcat security update

An update for tomcat is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

6.1CVSS6.8AI score0.05972EPSS
Exploits2References5
AlmaLinux
AlmaLinux
added 2024/01/10 12:0 a.m.80 views

Moderate: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Open Redirect vulnerability in FORM authentication CVE-2023-41080 tomcat: FileUpload: DoS due to accumulation of temporary files on Windows CVE-2023-42794 tomcat: improper...

6.1CVSS7.3AI score0.05972EPSS
Exploits2References10
RedHat Linux
RedHat Linux
added 2023/12/07 12:37 p.m.48 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Web Server 5.7.7 release and security update

Red Hat JBoss Web Server 5.7.7 zip release is now available for Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 9, and Windows Server. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVS...

7.5CVSS6.7AI score0.75116EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2023/12/06 11:30 p.m.89 views

Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.6.0 release and security update

Red Hat AMQ Streams 2.6.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.7AI score0.05972EPSS
Exploits1References13
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/01 7:16 p.m.47 views

Security Bulletin: Apache Tomcat is vulnerable to CVE-2023-41080 used in IBM Maximo Application Suite - Monitor Component

Summary IBM Maximo Application Suite - Monitor Component uses Apache Tomcat, which is vulnerable to CVE-2023-41080. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2023-41080 DESCRIPTION: Apache Tomcat could allow a remote attacker to condu...

6.1CVSS6.7AI score0.05972EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/11/29 2:45 p.m.27 views

Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Apache Tomcat

Summary IBM Watson Discovery Cartridge for IBM Cloud Pak for Data contains a vulnerable version of Apache Tomcat. Vulnerability Details CVEID: CVE-2023-41080 DESCRIPTION: Apache Tomcat could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in the FORM...

6.1CVSS7.2AI score0.05972EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/10/25 12:0 a.m.29 views

Amazon Linux AMI : tomcat8 (ALAS-2023-1861)

The version of tomcat8 installed on the remote host is prior to 8.5.93-1.94. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1861 advisory. Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the...

7.5CVSS7.3AI score0.46836EPSS
Exploits1References6
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/24 3:13 p.m.45 views

Security Bulletin: IBM Integration Bus is vulnerable to a remote attacker due to Apache Tomcat

Summary IBM Integration Bus is vulnerable to a remote attacker due to Apache Tomcat CVE-2023-41080. Vulnerability Details CVEID:CVE-2023-41080 DESCRIPTION: Apache Tomcat could allow a remote attacker to conduct phishing attacks, caused by an open redirect vulnerability in the FORM authentication...

6.1CVSS6.6AI score0.05972EPSS
Exploits0Affected Software1
Rows per page
Query Builder