Lucene search
K

32 matches found

Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.12 views

Oracle Siebel Server (October 2019 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the October 2019 CPU advisory. - Vulnerability in the Siebel UI Framework product of Oracle Siebel CRM component: Customizable Prod/Configurator Apache Tomcat. Supported versions that a...

5.9CVSS7.9AI score0.12058EPSS
Exploits0References2
Circl
Circl
added 2024/01/15 1:36 p.m.3 views

CVE-2018-8037

creationtimestamp| type| source ---|---|--- 2024-01-15 13:36:44+00:00| seen| https://t.me/ctinow/168335...

5.9CVSS7.8AI score0.12058EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.39 views

K98776835: Apache Tomcat vulnerability - CVE-2018-8037

Security Advisory Description If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NI...

5.9CVSS8AI score0.12058EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.38 views

SUSE: Security Advisory (SUSE-SU-2018:3011-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.21979EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.46 views

SUSE: Security Advisory (SUSE-SU-2018:3388-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.94494EPSS
Exploits5References11
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.42 views

SUSE: Security Advisory (SUSE-SU-2018:2699-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.21979EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2021/01/29 12:0 a.m.56 views

CentOS 8 : pki-deps:10.6 (CESA-2019:1529)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:1529 advisory. - tomcat: Open redirect in default servlet CVE-2018-11784 - tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins...

9.8CVSS7.6AI score0.94494EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2019/06/18 5:22 p.m.77 views

Important: Red Hat Security Advisory: pki-deps:10.6 security update

An update for the pki-deps:10.6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7AI score0.94494EPSS
Exploits3References5
AlmaLinux
AlmaLinux
added 2019/06/18 4:36 p.m.72 views

Important: pki-deps:10.6 security update

The Public Key Infrastructure PKI Deps module contains fundamental packages required as dependencies for the pki-core module by AlmaLinux Certificate System. Security Fixes: tomcat: Due to a mishandling of close in NIO/NIO2 connectors user sessions can get mixed up CVE-2018-8037 tomcat: Insecure...

9.8CVSS7AI score0.94494EPSS
Exploits3References5
OSV
OSV
added 2019/06/18 4:36 p.m.52 views

ALSA-2019:1529 Important: pki-deps:10.6 security update

The Public Key Infrastructure PKI Deps module contains fundamental packages required as dependencies for the pki-core module by AlmaLinux Certificate System. Security Fixes: tomcat: Due to a mishandling of close in NIO/NIO2 connectors user sessions can get mixed up CVE-2018-8037 tomcat: Insecure...

9.8CVSS7.2AI score0.94494EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.57 views

Apache Tomcat 8.5.x < 8.5.32 Multiple Vulnerabilities

Binary data 700695.pasl...

9.8CVSS7.4AI score0.21979EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.82 views

Apache Tomcat 9.0.x < 9.0.10 Security Misconfiguration

Binary data 700707.pasl...

9.8CVSS7.4AI score0.21979EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/04/03 12:0 a.m.48 views

Fedora Update for tomcat FEDORA-2018-b18f9dd65b

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.3AI score0.94494EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.60 views

openSUSE Security Update : tomcat (openSUSE-2019-770)

This update for tomcat to version 9.0.10 fixes the following issues : Security issues fixed : - CVE-2018-1336: An improper handing of overflow in the UTF-8 decoder with supplementary characters could have lead to an infinite loop in the decoder causing a Denial of Service bsc1102400. -...

9.8CVSS7.8AI score0.21979EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.66 views

Fedora 28 : 1:tomcat (2018-b1832101b8)

This update includes a rebase from 8.5.30 up to 8.5.32 which resolves two CVEs along with various other bugs/features : - rhbz1579612 CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins - rhbz1607586 CVE-2018-8034 tomcat: host name verification...

9.8CVSS7.6AI score0.21979EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/03 2:5 p.m.52 views

Security Bulletin: Apache Tomcat as used in IBM QRadar SIEM is vulnerable to publicly disclosed vulnerability. (CVE-2018-8034, CVE-2018-8037)

Summary Publicly disclosed vulnerabilities in Apache Tomcat. Vulnerability Details CVEID: CVE-2018-8034 Description: Apache Tomcat could allow a remote attacker to bypass security restrictions, caused by a missing host name verification when using TLS with the WebSocket client. An attacker could...

7.5CVSS0.3AI score0.213EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/10/09 12:0 a.m.55 views

openSUSE Security Update : tomcat (openSUSE-2018-1129)

This update for tomcat to version 9.0.10 fixes the following issues : Security issues fixed : - CVE-2018-1336: An improper handing of overflow in the UTF-8 decoder with supplementary characters could have lead to an infinite loop in the decoder causing a Denial of Service bsc1102400. -...

9.8CVSS7.8AI score0.21979EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2018/10/04 12:0 a.m.50 views

RHEL 6 / 7 : Red Hat JBoss Web Server 5.0 Service Pack 1 (RHSA-2018:2868)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2868 advisory. Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the...

5.9CVSS7.1AI score0.94494EPSS
Exploits3References11
RedHat Linux
RedHat Linux
added 2018/10/03 1:54 p.m.130 views

Important: Red Hat Security Advisory: Red Hat JBoss Web Server 5.0 Service Pack 1 security and bug fix update

An update is now available for Red Hat JBoss Web Server 5.0 for RHEL 6 and Red Hat JBoss Web Server 5.0 for RHEL 7. Red Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.9CVSS7AI score0.94494EPSS
Exploits3References8
RedHat Linux
RedHat Linux
added 2018/10/03 1:42 p.m.109 views

Important: Red Hat Security Advisory: Red Hat JBoss Web Server 5.0 Service Pack 1 security and bug fix update

An update is now available for Red Hat JBoss Web Server 5.0 for RHEL 6 and Red Hat JBoss Web Server 5.0 for RHEL 7. Red Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.9CVSS7AI score0.94494EPSS
Exploits3References8
Rows per page
Query Builder