Lucene search
K

62 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/04 12:0 a.m.9 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : Apache Tomcat Connectors vulnerability (USN-8369-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-8369-1 advisory. It was discovered that Apache Tomcat Connectors used incorrect default permissions for shared memory on Unix-like...

5.9CVSS6.3AI score0.00326EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2026/06/02 1:16 p.m.9 views

USN-8369-1: Apache Tomcat Connectors vulnerability

It was discovered that Apache Tomcat Connectors used incorrect default permissions for shared memory on Unix-like systems. A local attacker could possibly use this issue to view or modify modjk configuration data in shared memory, resulting in sensitive information exposure or a denial of service...

5.9CVSS6.3AI score0.00326EPSS
Exploits0
Snyk
Snyk
added 2026/05/12 5:22 p.m.10 views

Improper Validation of Syntactic Correctness of Input

Overview org.apache.tomcat:coyote is a maven plugin for Tomcat Connectors and HTTP parser. Affected versions of this package are vulnerable to Improper Validation of Syntactic Correctness of Input in the processing of HTTP/2 request headers. An attacker can cause unexpected behavior or potentiall...

9.8CVSS5.8AI score0.01339EPSS
Exploits0References2
Snyk
Snyk
added 2026/04/09 9:31 p.m.5 views

Improper Certificate Validation

Overview org.apache.tomcat:tomcat-coyote is a Tomcat Connectors and HTTP parser. Affected versions of this package are vulnerable to Improper Certificate Validation in getSSLHostConfig, which does not sufficiently account for all protocol host name inputs. An attacker can access sensitive...

9.1CVSS5.8AI score0.00307EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 9 : mod_jk-1.2.49-1.el9, mod_proxy_cluster-1.3.20-1.el9 (AXSA:2024-7930:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7930:01 advisory. httpd: Apache Tomcat Connectors modjk Information Disclosure CVE-2023-41081 modcluster/modproxycluster: Stored Cross site Scripting CVE-2023-6710...

7.5CVSS5.5AI score0.02242EPSS
Exploits5References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-7957

Malware in sbrugna...

5CVSS6AI score0.07109EPSS
Exploits0References26
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-45601

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.01257EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-46544

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect Default Permissions vulnerability in Apache Tomcat Connectors allows local users to view and modify shared memory containing modjk configuration which...

5.9CVSS6.2AI score0.00326EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/02/14 6:15 a.m.3 views

SUSE CVE-2023-41081

Important: Authentication Bypass CVE-2023-41081 The modjk component of Apache Tomcat Connectors in some circumstances, such as when a configuration included "JkOptions +ForwardDirectories" but the configuration did not provide explicit mounts for all possible proxied requests, modjk would use an...

5.3CVSS7.5AI score0.01257EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/11/06 9:52 a.m.3 views

mod_jk: information Disclosure / DoS

An Incorrect Default Permissions vulnerability was found in Apache Tomcat Connectors that allows local users to view and modify shared memory containing modjk configuration, which may lead to information disclosure and denial of service...

5.9CVSS5.8AI score0.00326EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/11/06 9:46 a.m.4 views

mod_jk: information Disclosure / DoS

An Incorrect Default Permissions vulnerability was found in Apache Tomcat Connectors that allows local users to view and modify shared memory containing modjk configuration, which may lead to information disclosure and denial of service...

5.9CVSS5.8AI score0.00326EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/01 3:27 p.m.4 views

mod_jk: information Disclosure / DoS

An Incorrect Default Permissions vulnerability was found in Apache Tomcat Connectors that allows local users to view and modify shared memory containing modjk configuration, which may lead to information disclosure and denial of service...

5.9CVSS5.8AI score0.00326EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2024/09/27 12:0 a.m.12 views

Mageia: Security Advisory (MGASA-2024-0315)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.1AI score0.00326EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/09/24 11:48 a.m.4 views

mod_jk: information Disclosure / DoS

An Incorrect Default Permissions vulnerability was found in Apache Tomcat Connectors that allows local users to view and modify shared memory containing modjk configuration, which may lead to information disclosure and denial of service...

5.9CVSS5.8AI score0.00326EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/24 11:46 a.m.4 views

mod_jk: information Disclosure / DoS

An Incorrect Default Permissions vulnerability was found in Apache Tomcat Connectors that allows local users to view and modify shared memory containing modjk configuration, which may lead to information disclosure and denial of service...

5.9CVSS5.8AI score0.00326EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/09/24 2:51 a.m.3 views

SUSE CVE-2024-46544

Incorrect Default Permissions vulnerability in Apache Tomcat Connectors allows local users to view and modify shared memory containing modjk configuration which may lead to information disclosure and/or denial of service. This issue affects Apache Tomcat Connectors: from 1.2.9-beta through 1.2.49...

6.1CVSS6.1AI score0.00326EPSS
Exploits0References5
OSV
OSV
added 2024/09/23 11:15 a.m.31 views

CVE-2024-46544

Incorrect Default Permissions vulnerability in Apache Tomcat Connectors allows local users to view and modify shared memory containing modjk configuration which may lead to information disclosure and/or denial of service. This issue affects Apache Tomcat Connectors: from 1.2.9-beta through 1.2.49...

5.9CVSS6.2AI score
Exploits0References3
NVD
NVD
added 2024/09/23 11:15 a.m.21 views

CVE-2024-46544

Incorrect Default Permissions vulnerability in Apache Tomcat Connectors allows local users to view and modify shared memory containing modjk configuration which may lead to information disclosure and/or denial of service. This issue affects Apache Tomcat Connectors: from 1.2.9-beta through 1.2.49...

5.9CVSS0.00326EPSS
Exploits0References3
OSV
OSV
added 2024/09/23 11:15 a.m.2 views

DEBIAN-CVE-2024-46544

Incorrect Default Permissions vulnerability in Apache Tomcat Connectors allows local users to view and modify shared memory containing modjk configuration which may lead to information disclosure and/or denial of service. This issue affects Apache Tomcat Connectors: from 1.2.9-beta through 1.2.49...

5.9CVSS5.8AI score0.00326EPSS
Exploits0References1
OSV
OSV
added 2024/09/23 11:15 a.m.1 views

UBUNTU-CVE-2024-46544

Incorrect Default Permissions vulnerability in Apache Tomcat Connectors allows local users to view and modify shared memory containing modjk configuration which may lead to information disclosure and/or denial of service. This issue affects Apache Tomcat Connectors: from 1.2.9-beta through 1.2.49...

5.9CVSS5.8AI score0.00326EPSS
Exploits0References5
Rows per page
Query Builder