Lucene search
K

60 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/03/29 1:48 a.m.86 views

Security Bulletin: Apache Tomcat vulnerabilities affect IBM SAN Volume Controller and Storwize Family (CVE-2014-0227 CVE-2014-0230)

Summary Apache Tomcat DoS and unauthorized access vulnerabilities Vulnerability Details This bulletin relates to vulnerabilities in the Apache Tomcat component which is used to provide the product’s management GUI. The CLI interface is unaffected. CVEID: CVE-2014-0227 DESCRIPTION: Apache Tomcat i...

7.8CVSS6.9AI score0.21045EPSS
Exploits0Affected Software5
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.28 views

Debian: Security Advisory (DLA-232-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.9AI score0.21045EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 7:53 p.m.36 views

K16344: Apache Tomcat vulnerability CVE-2014-0227

Security Advisory Description ava/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat 6.x before 6.0.42, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle attempts to continue reading data after an error has occurred, which allows remote attackers to conduct...

6.4CVSS7.1AI score0.21045EPSS
Exploits0Affected Software20
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/18 1:45 a.m.29 views

Security Bulletin: A vulnerability in Open Source Apache Tomcat affects IBM FlashSystem 840, (CVE-2014-0227)

Summary There is a vulnerability in Open Source Apache Tomcat that is used by IBM FlashSystem 840 which allows remote attackers to conduct HTTP request smuggling attacks or cause a denial of service under error scenarios. Vulnerability Details CVE-ID: CVE-2014-0227 Description: Apache Tomcat is...

6.4CVSS6.8AI score0.21045EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:32 a.m.2 views

SUSE CVE-2014-0227

java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat 6.x before 6.0.42, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle attempts to continue reading data after an error has occurred, which allows remote attackers to conduct HTTP request smuggling attacks...

6.4CVSS6.7AI score0.21045EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.6 views

Mageia: Security Advisory (MGASA-2015-0081)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS6.7AI score0.21045EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/28 6:35 p.m.27 views

Security Bulletin: Security vulnerabilities in Apache Tomcat affects multiple IBM Rational products based on IBM's Jazz technology (CVE-2014-0227)

Summary The Jazz Team Server is shipped with a version of the Apache Tomcat web server which contains security vulnerabilities that could potentially impact the following IBM Rational products deployed on Apache Tomcat: Collaborative Lifecycle Management CLM, Rational Requirements Composer RRC,...

6.4CVSS6.9AI score0.21045EPSS
Exploits0Affected Software8
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 10:4 p.m.20 views

Security Bulletin: A vulnerability in Open Source Apache Tomcat affects the IBM FlashSystem V840, (CVE-2014-0227)

Summary There is a vulnerability in Open Source Apache Tomcat that is used by the IBM FlashSystem V840 which allows remote attackers to conduct HTTP request smuggling attacks or cause a denial of service under error scenarios. Vulnerability Details CVE-ID: CVE-2014-0227 Description: Apache Tomcat...

6.4CVSS0.3AI score0.21045EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:35 a.m.33 views

Security Bulletin: A vulnerability in Open Source Apache Tomcat affects the IBM FlashSystem 900, (CVE-2014-0227)

Summary There is a vulnerability in Open Source Apache Tomcat that is used by the IBM FlashSystem 900 which allows remote attackers to conduct HTTP request smuggling attacks or cause a denial of service under error scenarios. Vulnerability Details CVE-ID: CVE-2014-0227 Description: Apache Tomcat ...

6.4CVSS0.3AI score0.21045EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:9 a.m.34 views

Security Bulletin: Apache Tomcat vulnerability affects IBM SONAS (CVE-2014-0227)

Summary A fix is available for IBM SONAS , Apache Tomcat unauthorized access vulnerability Vulnerability Details This bulletin relates to vulnerabilities in the Apache Tomcat component which is used to provide the product’s management GUI. The CLI interface is unaffected. CVEID: CVE-2014-0227...

6.4CVSS0.7AI score0.21045EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:9 a.m.28 views

Security Bulletin: Apache Tomcat vulnerability affects IBM Storwize V7000 Unified (CVE-2014-0227)

Summary Apache Tomcat unauthorized access vulnerability Vulnerability Details This bulletin relates to vulnerabilities in the Apache Tomcat component which is used to provide the product’s management GUI. The CLI interface is unaffected. CVEID: CVE-2014-0227 DESCRIPTION: Apache Tomcat is vulnerab...

6.4CVSS0.8AI score0.21045EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 10:32 p.m.34 views

Security Bulletin: Vulnerability in Apache Tomcat affects IBM UrbanCode Build (CVE-2014-0227)

Summary Apache Tomcat is vulnerable to HTTP request smuggling. Apache Tomcat is used by IBM UrbanCode Build. Vulnerability Details CVE-ID: CVE-2014-0227 Description: Apache Tomcat is vulnerable to HTTP request smuggling. A remote attacker could send a specially-crafted request in a malformed...

6.4CVSS0.9AI score0.21045EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 5:3 a.m.18 views

Security Bulletin: Rational Build Forge affected by Apache Tomcat vulnerability (CVE-2014-0227)

Summary The Apache Tomcat server used in Rational Build Forge is vulnerable to an attack using request smuggling. Vulnerability Details CVE ID: CVE-2014-0227 Description: Apache Tomcat is vulnerable to HTTP request smuggling. A remote attacker could send a specially-crafted request in a malformed...

6.4CVSS0.8AI score0.21045EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 5:1 a.m.30 views

Security Bulletin: A security vulnerability in Apache Tomcat affects Rational Insight (CVE-2014-0227)

Summary The Rational Insight is shipped with a version of the Apache Tomcat web server which contains a security vulnerability that could have a potential security impact. Vulnerability Details CVEID: CVE-2014-0227 DESCRIPTION: Apache Tomcat is vulnerable to HTTP request smuggling. A remote...

6.4CVSS0.3AI score0.21045EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 5:1 a.m.75 views

Security Bulletin: Rational Directory Server and Rational Directory Administrator can be affected by vulnerabilities (CVE-2015-0138 and CVE-2014-0227)

Summary This security bulletin is a notice of security vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 6 and in Apache Tomcat server, version 6, which impacts IBM Rational Directory Server 5.2.x, 5.1.1.x and Rational Directory Administrator 6.x Vulnerability Details...

6.4CVSS0.9AI score0.21045EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:25 p.m.17 views

Security Bulletin: Open Source Apache Tomcat prior to 6.0.42 as used in IBM QRadar Security Information and Event Manager 7.1 MR2, and 7.2.4 is vulnerable to HTTP request smuggling. (CVE-2014-0227)

Summary Apache Tomcat prior to 6.0.43 is vulnerable to HTTP request smuggling. CVE-2014-0227 Vulnerability Details CVEID: CVE-2014-0227 DESCRIPTION: Apache Tomcat is vulnerable to HTTP request smuggling. A remote attacker could send a specially-crafted request in a malformed chunked header to the...

6.4CVSS0.3AI score0.21045EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:23 p.m.28 views

Security Bulletin: IBM Security SiteProtector System is impacted by a vulnerability in Apache Tomcat (CVE-2014-0227)

Summary The IBM Security SiteProtector System uses Apache Tomcat, which is vulnerable to HTTP request smuggling. Vulnerability Details CVEID: CVE-2014-0227 DESCRIPTION: Apache Tomcat is vulnerable to HTTP request smuggling. A remote attacker could send a specially-crafted request in a malformed...

6.4CVSS0.5AI score0.21045EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:3 a.m.41 views

Security Bulletin: IBM WebSphere Cast Iron Solution is affected by Apache Tomcat vulnerabilities (CVE-2014-0230, CVE-2014-7810,CVE-2014-0227)

Summary There are multiple vulnerabilities CVE-2014-0230, CVE-2014-7810,CVE-2014-0227 reported in Apache Tomcat v6 that is used by WebSphere Cast Iron Solution Vulnerability Details CVEID: CVE-2014-0230 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by missing limitations...

7.8CVSS6.6AI score0.21045EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/08/09 12:0 a.m.51 views

Oracle Linux 7 : tomcat (ELSA-2017-2247)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-2247 advisory. - Resolves: rhbz1459747 CVE-2017-5664 tomcat: Security constrained bypass in error page mechanism - Resolves: rhbz1441481 CVE-2017-5647 tomcat: Incorre...

9.1CVSS6.7AI score0.83175EPSS
Exploits19References6
Tenable Nessus
Tenable Nessus
added 2016/03/28 12:0 a.m.32 views

Debian DSA-3530-1 : tomcat6 - security update

Multiple security vulnerabilities have been fixed in the Tomcat servlet and JSP engine, which may result on bypass of security manager restrictions, information disclosure, denial of service or session fixation. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

8.8CVSS6.7AI score0.21045EPSS
Exploits7References20
Rows per page
Query Builder