Lucene search
K

13 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/02/18 1:45 a.m.55 views

Security Bulletin: The IBM FlashSystem 840 product is affected by vulnerabilities in Apache Tomcat

Summary Security vulnerabilities have been discovered in Apache Tomcat Vulnerability Details CVE-ID: CVE-2013-4286, CVE-2013-4322, & CVE-2014-0033 DESCRIPTION: FlashSystem 840 uses Apache Tomcat. FlashSystem 840 runs an Apache Tomcat web server which enables the systems’ browser-based...

5.8CVSS8.9AI score0.16833EPSS
Exploits5Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:8 a.m.42 views

Security Bulletin: The IBM V840 product model number AE1 node is affected by vulnerabilities in Apache Tomcat

Summary Security vulnerabilities have been discovered in Apache Tomcat Vulnerability Details CVE-ID: CVE-2013-4286, CVE-2013-4322, & CVE-2014-0033 DESCRIPTION: FlashSystem V840-AE1 uses Apache Tomcat. FlashSystem V840-AE1 runs an Apache Tomcat web server which enables the systems’ browser-based...

5.8CVSS0.7AI score0.16833EPSS
Exploits5Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:8 a.m.49 views

Security Bulletin: Apache Tomcat security vulnerability issues on IBM Storwize V7000 Unified system (CVE-2013-4286, CVE-2014-0033, CVE-2013-4322, CVE-2013-4590)

Summary IBM Storwize V7000 Unified system is shipped with Apache Tomcat, for which fixes are available for four security vulnerabilities. Vulnerability Details CVEID: CVE-2013-4286 CVE-2014-0033 CVE-2013-4322 CVE-2013-4590 DESCRIPTION: Apache Tomcat is used in IBM Storwize V7000 Unified system fo...

5.8CVSS0.9AI score0.16833EPSS
Exploits6Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:1 a.m.38 views

Security Bulletin: Security vulnerabilities in Apache Tomcat for WebSphere Application Server Community Edition 2.1.1.6 and 3.0.0.4(CVE-2013-4286,CVE-2012-3544,CVE-2013-4322,CVE-2013-4590,CVE-2014-0033)

Summary Security vulnerabilities exist in Apache Tomcat which is shipped with IBM WebSphere Application Server Community Edition 2.1.1.6 and 3.0.0.4. Vulnerability Details CVE ID: CVE-2013-4286 DESCRIPTION: Apache Tomcat before 6.0.39, and 7.x before 7.0.47, when an HTTP connector or AJP connecto...

5.8CVSS0.5AI score0.29784EPSS
Exploits8Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/03/28 12:0 a.m.32 views

Debian DSA-3530-1 : tomcat6 - security update

Multiple security vulnerabilities have been fixed in the Tomcat servlet and JSP engine, which may result on bypass of security manager restrictions, information disclosure, denial of service or session fixation. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

8.8CVSS6.7AI score0.21045EPSS
Exploits7References20
OSV
OSV
added 2015/01/19 12:0 a.m.30 views

DLA-91-2 tomcat6 - regression update

Bulletin has no description...

7.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.39 views

Oracle Solaris Third-Party Patch Update : tomcat (multiple_vulnerabilities_in_apache_tomcat4)

The remote Solaris system is missing necessary patches to address security updates : - Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not properly handle chunk extensions in chunked transfer coding, which allows remote attackers to cause a denial of service by streaming data...

5.8CVSS6.7AI score0.66817EPSS
Exploits7References8
Debian
Debian
added 2014/11/23 9:2 a.m.66 views

[SECURITY] [DLA 91-1] tomcat6 security update

Package : tomcat6 Version : 6.0.41-2+squeeze5 CVE ID : CVE-2012-3439 CVE-2013-1571 CVE-2013-4286 CVE-2013-4322 CVE-2013-4590 CVE-2014-0033 Debian Bugs : 299635 608286 654136 659748 664072 665393 666256 668761 671373 677912 682955 687818 692440 695250 713796 717279 This is an upgrade from tomcat...

5.8CVSS6.8AI score0.66817EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2014/06/26 12:0 a.m.41 views

RHEL 5 / 6 : Red Hat JBoss Web Server 2.0.1 tomcat6 (RHSA-2014:0525)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:0525 advisory. Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the...

7.5CVSS6.8AI score0.83175EPSS
Exploits13References11
RedHat Linux
RedHat Linux
added 2014/05/21 3:45 p.m.50 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Web Server 2.0.1 tomcat6 security update

Updated tomcat6 packages that fix multiple security issues are now available for Red Hat JBoss Web Server 2.0.1 on Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores,...

7.5CVSS6.5AI score0.83175EPSS
Exploits13References5
RedHat Linux
RedHat Linux
added 2014/05/21 3:45 p.m.61 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Web Server 2.0.1 tomcat6 security update

An update for the Apache Tomcat 6 component for Red Hat JBoss Web Server 2.0.1 that fixes multiple security issues is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring System CV...

7.5CVSS6.5AI score0.83175EPSS
Exploits13References6
OpenVAS
OpenVAS
added 2014/03/12 12:0 a.m.40 views

Ubuntu Update for tomcat7 USN-2130-1

Check for the Version of tomcat7 OpenVAS Vulnerability Test $Id: gbubuntuUSN21301.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for tomcat7 USN-2130-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software...

7.5CVSS7.7AI score0.83175EPSS
Exploits13References2
CVE
CVE
added 2014/02/26 11:0 a.m.116 views

CVE-2014-0033

CVE-2014-0033 affects Apache Tomcat 6.0.33–6.0.37, where the disableURLRewriting setting is not honored when a session ID is in a URL. This could allow remote attackers to hijack a valid user’s session via a crafted link. The vulnerability is documented in IBM advisories and the GHSA entry, which...

4.3CVSS8.1AI score0.09895EPSS
Exploits1References23Affected Software1
Rows per page
Query Builder