Lucene search
K

38 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.9 views

TencentOS Server 3: tomcat (TSSA-2024:0045)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0045 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

6.1CVSS7.3AI score0.05972EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.9 views

TencentOS Server 4: tomcat (TSSA-2024:0243)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0243 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.5CVSS7.3AI score0.99999EPSS
Exploits22References9
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/26 3:58 a.m.71 views

Security Bulletin: IBM Cloud Pak for Network Automation 2.6.5 fixes multiple security vulnerabilities

Summary IBM Cloud Pak for Network Automation 2.6.5 fixes multiple security vulnerabilities, listed in the CVEs below. Vulnerability Details CVEID:CVE-2002-0080 DESCRIPTION: rsync could allow a remote attacker to gain elevated privileges on the system. rsync fails to drop privileges for...

7.5CVSS9.4AI score0.99999EPSS
Exploits23Affected Software1
OSV
OSV
added 2025/03/06 6:33 p.m.7 views

CLSA-2025-1741286028 Fix CVE(s): CVE-2023-42795

SECURITY UPDATE: Incomplete Cleanup vulnerability in Tomcat - debian/patches/CVE-2023-42795.patch: Improve handling of failures during recycle methods - CVE-2023-42795...

5.3CVSS6.8AI score0.0216EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2023-42795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1...

5.3CVSS6.8AI score0.0216EPSS
Exploits1References3
OSV
OSV
added 2025/02/12 7:14 p.m.7 views

CLSA-2025-1739387678 tomcat: Fix of CVE-2023-42795

CVE-2023-42795: improve handling of failures during recycle methods...

5.3CVSS7.2AI score0.0216EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/07/12 12:0 a.m.33 views

RHEL 6 : tomcat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tomcat: EncryptInterceptor documentation mistake CVE-2022-29885 - tomcat: Open Redirect vulnerability in...

7.5CVSS8.2AI score0.73139EPSS
Exploits7References4
Tenable Nessus
Tenable Nessus
added 2024/05/24 12:0 a.m.41 views

Oracle Linux 9 : tomcat (ELSA-2024-3307)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3307 advisory. - Resolves: RHEL-31048 tomcat: Apache Tomcat: WebSocket DoS with incomplete closing handshake CVE-2024-23672 - Resolves: RHEL-31032 tomcat: : Apache...

7.5CVSS7.7AI score0.23072EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.28 views

openSUSE Security Advisory (SUSE-SU-2024:0472-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.05848EPSS
Exploits2References11
Tenable Nessus
Tenable Nessus
added 2024/02/17 12:0 a.m.87 views

SUSE SLES15: tomcat / tomcat-admin-webapps / tomcat-docs-webapp / etc (SUSE-SU-2024:0472-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0472-1 advisory. Updated to Tomcat 9.0.85: - CVE-2023-45648: Improve trailer header parsing bsc1216118. - CVE-2023-42794: FileUpload:...

7.8CVSS6.8AI score0.05848EPSS
Exploits2References18
OpenVAS
OpenVAS
added 2024/02/15 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2024:0472-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.05848EPSS
Exploits2References11
OpenVAS
OpenVAS
added 2024/02/09 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for tomcat (EulerOS-SA-2024-1166)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.6AI score0.0216EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/31 11:34 p.m.40 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a sensitive information exposure in Apache Tomcat [CVE-2023-42795]

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a sensitive information exposure in Apache Tomcat, caused by an incomplete Cleanup vulnerability when recycling various internal objects CVE-2023-42795. Apache Tomcat is used as a component of our Speech...

5.3CVSS6.2AI score0.0216EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2024/01/25 10:59 a.m.51 views

Moderate: Red Hat Security Advisory: tomcat security update

An update for tomcat is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

6.1CVSS6.8AI score0.05972EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.39 views

RHEL 9 : tomcat (RHSA-2024:0474)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0474 advisory. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Open Redirect...

6.1CVSS7.4AI score0.05972EPSS
Exploits2References11
Tenable Nessus
Tenable Nessus
added 2024/01/17 12:0 a.m.73 views

F5 Networks BIG-IP : Apache Tomcat vulnerability (K000138178)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000138178 advisory. - Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from...

5.3CVSS7.2AI score0.0216EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/01/11 12:0 a.m.102 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.5.5)

The version of AOS installed on the remote host is prior to 6.5.5. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.5.5 advisory. - Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through...

7.5CVSS7.2AI score0.99999EPSS
Exploits21References5
RedHat Linux
RedHat Linux
added 2024/01/10 11:32 a.m.51 views

Moderate: Red Hat Security Advisory: tomcat security update

An update for tomcat is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

6.1CVSS6.8AI score0.05972EPSS
Exploits2References5
AlmaLinux
AlmaLinux
added 2024/01/10 12:0 a.m.80 views

Moderate: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Open Redirect vulnerability in FORM authentication CVE-2023-41080 tomcat: FileUpload: DoS due to accumulation of temporary files on Windows CVE-2023-42794 tomcat: improper...

6.1CVSS7.3AI score0.05972EPSS
Exploits2References10
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/04 7:11 a.m.42 views

Security Bulletin: IBM DevOps Build 7.0.0 addresses multiple vulnerabilities.

Summary IBM DevOps Build 7.0.0 addresses multiple vulnerabilities. Vulnerability Details CVEID:CVE-2023-45648 DESCRIPTION: Apache Tomcat is vulnerable to HTTP request smuggling, caused by improper parsing of HTTP trailer headers. By sending a specially crafted invalid trailer header, an attacker...

5.9CVSS7.3AI score0.05848EPSS
Exploits2Affected Software1
Rows per page
Query Builder