Lucene search
K

72 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.7 views

MiracleLinux 7 : tomcat-7.0.76-9.el7 (AXSA:2019-3775:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-3775:01 advisory. Security Fix - Apache Tomcat URL URL CVE-2018-11784 CVEJVNhttp://jvndb.jvn.jp/ Tenable has extracted the preceding description block directly from the...

4.3CVSS6.4AI score0.94494EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.42 views

Apache Tomcat 9.0.0.M1 < 9.0.12

The version of Tomcat installed on the remote host is prior to 9.0.12. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat9.0.12security-9 advisory. - When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90...

4.3CVSS6.1AI score0.94494EPSS
Exploits3References3
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.111 views

K64921482: Apache Tomcat vulnerability CVE-2018-11784

Security Advisory Description When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory e.g. redirecting to '/foo/' when the user requested '/foo' a specially crafted URL could be used to cause the redirect to be...

4.3CVSS6.1AI score0.94494EPSS
Exploits3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:27 a.m.7 views

SUSE CVE-2018-11784

When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory e.g. redirecting to '/foo/' when the user requested '/foo' a specially crafted URL could be used to cause the redirect to be generated to any URI of the...

6.1CVSS6.7AI score0.94494EPSS
Exploits3References14
Circl
Circl
added 2021/09/21 4:42 a.m.7 views

CVE-2018-11784

creationtimestamp| type| source ---|---|--- 2021-09-21 04:42:16+00:00| seen| https://t.me/pwnwikizhchannel/768 2024-01-09 09:36:31+00:00| seen| https://t.me/ctinow/164877 2026-01-20 10:25:51+00:00| seen| https://gist.github.com/christiankopac/0797838ab2b306060a09390db0528458...

4.3CVSS5.8AI score0.94494EPSS
Exploits3References3
Exploit DB
Exploit DB
added 2021/07/13 12:0 a.m.762 views

Apache Tomcat 9.0.0.M1 - Open Redirect

Exploit Title: Apache Tomcat 9.0.0.M1 - Open Redirect Date: 10/04/2018 Exploit Author: Central InfoSec Version: Apache Tomcat 9.0.0.M1 to 9.0.0.11, 8.5.0 to 8.5.33, and 7.0.23 to 7.0.90 CVE : CVE-2018-11784 Proof of Concept: Identify a subfolder within your application http://example.com/test/...

4.3CVSS5.7AI score0.94494EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/07/11 12:0 a.m.459 views

Apache Tomcat 9.0.0M1 Open Redirect

Exploit Title: Apache Tomcat 9.0.0.M1 - Open Redirect Date: 10/04/2018 Exploit Author: Central InfoSec Version: Apache Tomcat 9.0.0.M1 to 9.0.0.11, 8.5.0 to 8.5.33, and 7.0.23 to 7.0.90 CVE : CVE-2018-11784 Proof of Concept: Identify a subfolder within your application http://example.com/test/...

4.3CVSS5.7AI score0.94494EPSS
Exploits3
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/02 2:32 a.m.52 views

Security Bulletin: Vulnerability in Apache Tomcat affects IBM Platform Symphony

Summary This interim fix provides instructions on upgrading Apache Tomcat from v6.0.43 to v8.5.37 in IBM Platform Symphony 7.1 Fix Pack 1 in order to address security vulnerability CVE-2018-11784 in Apache Tomcat. Vulnerability Details CVE-ID: CVE-2018-11784 Description: Apache Tomcat could allow...

4.3CVSS5.3AI score0.94494EPSS
Exploits3Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2018:3935-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.9AI score0.94494EPSS
Exploits3References4
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/28 6:35 p.m.45 views

Security Bulletin: Security vulnerabilities in Apache Tomcat affect multiple IBM Rational products based on IBM's Jazz technology

Summary The Jazz Team Server is shipped with/or supports versions of the Apache Tomcat web server which contains a security vulnerabilities that could potentially impact the following IBM Rational products deployed on Apache Tomcat: Collaborative Lifecycle Management CLM, Rational DOORS Next...

4.3CVSS0.6AI score0.94494EPSS
Exploits3Affected Software6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.46 views

SUSE: Security Advisory (SUSE-SU-2018:3388-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.94494EPSS
Exploits5References11
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:3393-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.9AI score0.94494EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2021/01/29 12:0 a.m.56 views

CentOS 8 : pki-deps:10.6 (CESA-2019:1529)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:1529 advisory. - tomcat: Open redirect in default servlet CVE-2018-11784 - tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins...

9.8CVSS7.6AI score0.94494EPSS
Exploits3References5
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/23 8:41 p.m.37 views

Security Bulletin: IBM Integration Bus affected by Apache Tomcat (core only) vulnerability CVE-2018-11784

Summary IBM Integration Bus is affected by an Apache Tomcat vulnerability which was reported and has been addressed. Vulnerability details are listed below. Vulnerability Details CVEID: CVE-2018-11784 DESCRIPTION: Apache Tomcat could allow a remote attacker to conduct phishing attacks, caused by ...

4.3CVSS0.9AI score0.94494EPSS
Exploits3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/11 9:17 p.m.71 views

Security Bulletin: IBM Cognos Controller 2020Q1 Security Updater: Multiple Security Vulnerabilities have been identified in IBM Cognos Controller

Summary This bulletin addresses several security vulnerabilities that are fixed in IBM Cognos Controller 10.4.1 IF4, 10.4.0 IF7, 10.3.1 IF13 and 10.3.0 FP1 IF14. There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 7 and the IBM® Runtime Environment Jav...

9.8CVSS0.4AI score0.94494EPSS
Exploits6Affected Software1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.45 views

Huawei EulerOS: Security Advisory for tomcat (EulerOS-SA-2019-2047)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.5AI score0.94494EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.36 views

Huawei EulerOS: Security Advisory for tomcat (EulerOS-SA-2019-1602)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.8AI score0.94494EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.39 views

Huawei EulerOS: Security Advisory for tomcat (EulerOS-SA-2019-1772)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.94494EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/12/30 12:0 a.m.68 views

Debian DSA-4596-1 : tomcat8 - security update

Several issues were discovered in the Tomcat servlet and JSP engine, which could result in session fixation attacks, information disclosure, cross-site scripting, denial of service via resource exhaustion and insecure redirects. C Tenable Network Security, Inc. The descriptive text and package...

9.8CVSS6.5AI score0.94494EPSS
Exploits6References9
Debian
Debian
added 2019/12/27 10:15 p.m.205 views

[SECURITY] [DSA 4596-1] tomcat8 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4596-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 27, 2019 https://www.debian.org/security/faq -...

9.8CVSS7.8AI score0.94494EPSS
Exploits6
Rows per page
Query Builder