Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.4 views

TencentOS Server 4: tomcat (TSSA-2024:0569)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0569 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.6CVSS7.8AI score0.01702EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-38286

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from...

8.6CVSS7.1AI score0.01702EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.18 views

Security Bulletin:  IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) is affected by a Denial of Service Vulnerability in Apache Tomcat (CVE-2024-38286)

Summary Apache Tomcat is used by IBM DevOps Deploy / IBM UrbanCode Deploy UCD as part of its web interface. Apache Tomcat is vulnerable to a denial of service, caused by the improper handling of the TLS handshake process under certain configurations. By sending specially crafted requests, a remot...

8.6CVSS6.3AI score0.01702EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.19 views

Security Bulletin: IBM Integration Bus for z/OS is vulnerable to a denial of service due to Apache Tomcat (CVE-2024-38286)

Summary IBM Integration Bus for z/OS is vulnerable to a denial of service due to Apache Tomcat. Vulnerability Details CVEID:CVE-2024-38286 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by the improper handling of the TLS handshake process under certain configurations. By...

8.6CVSS6.6AI score0.01702EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/26 9:40 a.m.58 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining Interim Fix for Nov 2024

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 1.15.0 IF004 Vulnerability Details CVEID:CVE-2024-38821 DESCRIPTION: VMware Tanzu Spring Security could allow a remote attacker to bypass security...

9.8CVSS9.1AI score0.66594EPSS
Exploits16Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/11/08 12:0 a.m.8 views

RHEL 8 : pki-deps:10.6 (RHSA-2024:8572)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:8572 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: tomcat: Denial of Servic...

8.6CVSS8.1AI score0.01702EPSS
Exploits0References4
OSV
OSV
added 2024/11/07 8:15 a.m.1 views

DEBIAN-CVE-2024-38286

Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from 10.1.0-M1 through 10.1.24, from 9.0.13 through 9.0.89. The following versions were EOL at the time the CVE was created but are known to be...

7.5CVSS8AI score0.01702EPSS
Exploits0References1
NVD
NVD
added 2024/11/07 8:15 a.m.37 views

CVE-2024-38286

Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from 10.1.0-M1 through 10.1.24, from 9.0.13 through 9.0.89. The following versions were EOL at the time the CVE was created but are known to be...

8.6CVSS0.01702EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/11/07 7:37 a.m.19 views

CVE-2024-38286 Apache Tomcat: Denial of Service

Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from 10.1.0-M1 through 10.1.24, from 9.0.13 through 9.0.89. The following versions were EOL at the time the CVE was created but are known to be...

8.6CVSS8.2AI score0.01702EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/11/07 7:37 a.m.18 views

CVE-2024-38286

Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from 10.1.0-M1 through 10.1.24, from 9.0.13 through 9.0.89. The following versions were EOL at the time the CVE was created but are known to be...

8.6CVSS8AI score0.01702EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/11/07 12:0 a.m.15 views

RHEL 8 : pki-deps:10.6 (RHSA-2024:8497)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:8497 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: tomcat: Denial of Servic...

8.6CVSS8.1AI score0.01702EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/11/07 12:0 a.m.12 views

RHEL 8 : pki-deps:10.6 (RHSA-2024:8567)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:8567 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: tomcat: Denial of Servic...

8.6CVSS8.1AI score0.01702EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/11/07 12:0 a.m.13 views

RHEL 8 : pki-core:10.6 and pki-deps:10.6 (RHSA-2024:8543)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:8543 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: tomcat: Denial of Servic...

8.6CVSS8.1AI score0.01702EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/10/30 12:0 a.m.15 views

RHEL 9 : pki-servlet-engine (RHSA-2024:8528)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:8528 advisory. Tomcat is the servlet engine that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Java...

8.6CVSS8AI score0.01702EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/10/29 12:7 p.m.18 views

Important: Red Hat Security Advisory: pki-deps:10.6 security update

An update for the pki-deps:10.6 module is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

8.6CVSS7.2AI score0.01702EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/29 12:0 a.m.13 views

RHEL 9 : pki-servlet-engine (RHSA-2024:8494)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:8494 advisory. Tomcat is the servlet engine that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Java...

8.6CVSS8AI score0.01702EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/10/28 12:31 p.m.22 views

Important: Red Hat Security Advisory: pki-servlet-engine security update

An update for pki-servlet-engine is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.6CVSS7.1AI score0.01702EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/10/28 1:18 a.m.29 views

Important: Red Hat Security Advisory: pki-servlet-engine security update

An update for pki-servlet-engine is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.6CVSS7.1AI score0.01702EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2024/10/10 7:4 a.m.18 views

K000141403: Apache Tomcat vulnerability CVE-2024-38286

Security Advisory Description The cve record for the cve id does not exist. CVE-2024-38286 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Development has evaluated the currently supported releases for potential vulnerability, and...

8.6CVSS8.5AI score0.01702EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2024/10/02 11:3 a.m.1 views

Security update for tomcat

This update for tomcat fixes the following issues: CVE-2024-38286: OutOfMemory exception triggered through abuse of the TLS handshake process. bsc1230986 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.2CVSS7.3AI score0.01702EPSS
Exploits0References4
Rows per page
Query Builder