SUSE CVE-2012-4431

org/apache/catalina/filters/CsrfPreventionFilter.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.32 allows remote attackers to bypass the cross-site request forgery CSRF protection mechanism via a request that lacks a session identifier...

PT-2014-3524 · Apache +1 · Apache Tomcat 7 +1

Name of the Vulnerable Software and Affected Versions: tomcat7 package for Apache Tomcat 7 in Red Hat Enterprise Linux RHEL 7 Description: A crafted request can cause a denial of service due to CPU consumption. This issue is a result of an unspecified regression. Recommendations: For the tomcat7...