Lucene search
K

50 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 7 : tomcat-7.0.69-12.el7 (AXSA:2017-1748:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1748:02 advisory. Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Ja...

9.1CVSS7.9AI score0.16567EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-5648

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - While investigating bug 60718, it was noticed that some calls to application listeners in Apache Tomcat 9.0.0.M1 to 9.0.0.M17, 8.5.0 to 8.5.11, 8.0.0.RC1 to...

9.1CVSS7.8AI score0.13225EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.34 views

Apache Tomcat 9.0.0.M1 < 9.0.0.M18

The version of Tomcat installed on the remote host is prior to 9.0.0.M18. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat9.0.0.m18security-9 advisory. - While investigating bug 60718, it was noticed that some calls to application listeners in Apache Tomcat...

9.1CVSS7.9AI score0.13225EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.48 views

Apache Tomcat 8.5.0 < 8.5.12

The version of Tomcat installed on the remote host is prior to 8.5.12. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.5.12security-8 advisory. - While investigating bug 60718, it was noticed that some calls to application listeners in Apache Tomcat 9.0.0.M...

9.1CVSS7.9AI score0.13225EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.40 views

Apache Tomcat 8.0.0.RC1 < 8.0.42

The version of Tomcat installed on the remote host is prior to 8.0.42. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.0.42security-8 advisory. - While investigating bug 60718, it was noticed that some calls to application listeners in Apache Tomcat 9.0.0.M...

9.1CVSS7.9AI score0.13225EPSS
Exploits0References3
F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.68 views

K41385746: Apache Tomcat vulnerability CVE-2017-5648

Security Advisory Description While investigating bug 60718, it was noticed that some calls to application listeners in Apache Tomcat 9.0.0.M1 to 9.0.0.M17, 8.5.0 to 8.5.11, 8.0.0.RC1 to 8.0.41, and 7.0.0 to 7.0.75 did not use the appropriate facade object. When running an untrusted application...

9.1CVSS8.4AI score0.13225EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.31 views

Mageia: Security Advisory (MGASA-2017-0117)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.9AI score0.1684EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/28 6:35 p.m.48 views

Security Bulletin: Security vulnerabilities in Apache Tomcat affect multiple IBM Rational products based on IBM's Jazz technology

Summary The Jazz Team Server is shipped with/or supports versions of the Apache Tomcat web server which contain security vulnerabilities that could potentially impact the following IBM Rational products deployed on Apache Tomcat: Collaborative Lifecycle Management CLM, Rational DOORS Next...

9.1CVSS0.5AI score0.1684EPSS
Exploits1Affected Software7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.34 views

SUSE: Security Advisory (SUSE-SU-2017:1382-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.4AI score0.1684EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2017:1229-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.4AI score0.1684EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.37 views

SUSE: Security Advisory (SUSE-SU-2017:1660-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.90338EPSS
Exploits12References18
Tenable Nessus
Tenable Nessus
added 2019/01/11 12:0 a.m.160 views

Apache Tomcat 7.0.0 < 7.0.76

The version of Tomcat installed on the remote host is prior to 7.0.76. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat7.0.76security-7 advisory. - While investigating bug 60718, it was noticed that some calls to application listeners in Apache Tomcat 9.0.0.M...

9.1CVSS7.9AI score0.13225EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/08/29 12:0 a.m.131 views

RHEL 6 / 7 : Red Hat JBoss Web Server 3.1.0 Service Pack 1 (RHSA-2017:1801)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:1801 advisory. Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the...

9.8CVSS8AI score0.8904EPSS
Exploits9References24
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 5:22 a.m.48 views

Security Bulletin: Security vulnerabilities have been identified in Jazz Reporting Service shipped with Rational Insight

Summary Jazz Reporting Service is shipped as a component of Rational Insight. Information about security vulnerabilities affecting Jazz Reporting Service has been published in a security bulletin. Vulnerability Details CVEID: CVE-2016-8745 DESCRIPTION: Apache Tomcat could allow a remote attacker ...

9.1CVSS0.3AI score0.1684EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 11:46 p.m.35 views

Security Bulletin: Vulnerability in Apache Tomcat affects IBM Algo One - Counterparty Credit Risk (CVE-2017-5648)

Summary IBM Algo One - Counterparty Credit Risk could allow a remote attacker to bypass security restrictions, caused by the failure to use the appropriate facade object by certain application listener calls. Advsory 8335 Vulnerability Details CVE-ID: CVE-2017-5648 Description: Apache Tomcat coul...

9.1CVSS0.9AI score0.13225EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 11:46 p.m.47 views

Security Bulletin: Vulnerability in Apache Tomcat affects IBM Algo One - Algo Risk Application (CVE-2017-5648)

Summary IBM Algo One - Algo Risk Application could allow a remote attacker to bypass security restrictions, caused by the failure to use the appropriate facade object by certain application listener calls. Advsory 8335 Vulnerability Details CVE-ID: CVE-2017-5648 Description: Apache Tomcat could...

9.1CVSS1AI score0.13225EPSS
Exploits0Affected Software2
OpenVAS
OpenVAS
added 2018/01/16 12:0 a.m.46 views

Debian: Security Advisory (DLA-924-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.9AI score0.1684EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/01/09 12:0 a.m.52 views

Ubuntu 14.04 LTS / 16.04 LTS : Tomcat vulnerabilities (USN-3519-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3519-1 advisory. It was discovered that Tomcat incorrectly handled certain pipelined requests when sendfile was used. A remote attacker could use this issue t...

9.1CVSS6.8AI score0.1684EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2018/01/09 12:0 a.m.46 views

Ubuntu: Security Advisory (USN-3519-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7AI score0.1684EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2018/01/08 3:38 p.m.75 views

USN-3519-1: Tomcat vulnerabilities

It was discovered that Tomcat incorrectly handled certain pipelined requests when sendfile was used. A remote attacker could use this issue to obtain wrong responses possibly containing sensitive information. CVE-2017-5647 It was discovered that Tomcat incorrectly used the appropriate facade...

9.1CVSS6.7AI score0.1684EPSS
Exploits1
Rows per page
Query Builder