Lucene search
K

51 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.23 views

Alibaba Cloud Linux 3 : 0037: pki-core:10.6 (ALINUX3-SA-2021:0037)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0037 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-11023: In jQuery versions greater...

9.8CVSS8.2AI score0.9927EPSS
Exploits54References7
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.58 views

Apache Tomcat 7.0.0 < 7.0.100 multiple vulnerabilities

The version of Tomcat installed on the remote host is prior to 7.0.100. It is, therefore, affected by multiple vulnerabilities as referenced in the fixedinapachetomcat7.0.100security-7 advisory. - When using the Apache JServ Protocol AJP, care must be taken when trusting incoming connections to...

9.8CVSS8.6AI score0.9927EPSS
Exploits45References10
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.49 views

RHEL 6 : tomcat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tomcat: request mixup CVE-2022-25762 - When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 ...

8.5AI score0.73139EPSS
Exploits28References15
Tenable Nessus
Tenable Nessus
added 2023/08/23 12:0 a.m.41 views

Amazon Linux 2 : tomcat (ALAS-2023-2216)

The version of tomcat installed on the remote host is prior to 7.0.76-10. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2216 advisory. A flaw was found in Apache Tomcat. The HTTP header parsing code used an approach to end-of-line EOL parsing that allowed some...

5.8CVSS7.4AI score0.09386EPSS
Exploits0References4
Amazon
Amazon
added 2023/08/21 12:0 a.m.49 views

Medium: tomcat

Issue Overview: A flaw was found in Apache Tomcat. The HTTP header parsing code used an approach to end-of-line EOL parsing that allowed some invalid HTTP headers to be parsed as valid. This led to the possibility of HTTP Request Smuggling if Tomcat was located behind a reverse proxy that...

5.8CVSS8AI score0.09386EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:4 a.m.2 views

SUSE CVE-2020-1935

In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approach to end-of-line parsing that allowed some invalid HTTP headers to be parsed as valid. This led to a possibility of HTTP Request Smuggling if Tomcat was located behind a reverse...

4.8CVSS7.2AI score0.09386EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.75 views

Mageia: Security Advisory (MGASA-2020-0138)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.9927EPSS
Exploits45References7
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.45 views

SUSE: Security Advisory (SUSE-SU-2020:0631-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.9927EPSS
Exploits45References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.43 views

SUSE: Security Advisory (SUSE-SU-2020:0598-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.9927EPSS
Exploits45References8
RedHat Linux
RedHat Linux
added 2021/03/30 9:46 a.m.99 views

Low: Red Hat Security Advisory: tomcat security update

An update for tomcat is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS7AI score0.10687EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/03/17 12:0 a.m.53 views

RHEL 7 : tomcat (RHSA-2021:0882)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0882 advisory. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Session fixation wh...

7.5CVSS7.5AI score0.10687EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.130 views

CentOS 8 : pki-core:10.6 and pki-deps:10.6 (CESA-2020:4847)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4847 advisory. - jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 - bootstrap: XSS in the data-target attribute CVE-2016-10735 - bootstrap:...

9.8CVSS7.5AI score0.9927EPSS
Exploits65References14
Amazon
Amazon
added 2021/01/15 12:0 a.m.45 views

Low: tomcat7

Issue Overview: A flaw was found in Apache Tomcat. The HTTP header parsing code used an approach to end-of-line EOL parsing that allowed some invalid HTTP headers to be parsed as valid. This led to the possibility of HTTP Request Smuggling if Tomcat was located behind a reverse proxy that...

5.8CVSS7.9AI score0.09386EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/01/14 12:0 a.m.35 views

Amazon Linux AMI : tomcat7 (ALAS-2021-1472)

The version of tomcat7 installed on the remote host is prior to 7.0.107-1.39. It is, therefore, affected by a vulnerability as referenced in the ALAS-2021-1472 advisory. A flaw was found in Apache Tomcat. The HTTP header parsing code used an approach to end-of-line EOL parsing that allowed some...

5.8CVSS7.4AI score0.09386EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/12/18 12:0 a.m.229 views

Amazon Linux AMI : tomcat7 (ALAS-2020-1472) (deprecated)

The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the ALAS-2020-1472 advisory. - In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approa...

7.9AI score0.09386EPSS
Exploits0References3
Amazon
Amazon
added 2020/12/16 8:51 p.m.47 views

Low: tomcat7

Issue Overview: A flaw was found in Apache Tomcat. The HTTP header parsing code used an approach to end-of-line EOL parsing that allowed some invalid HTTP headers to be parsed as valid. This led to the possibility of HTTP Request Smuggling if Tomcat was located behind a reverse proxy that...

5.8CVSS1.2AI score0.09386EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/11/19 12:0 a.m.25 views

CentOS: Security Advisory for tomcat (CESA-2020:5020)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.8CVSS7.5AI score0.09386EPSS
Exploits0References2
Cent OS
Cent OS
added 2020/11/18 5:27 p.m.264 views

tomcat security update

CentOS Errata and Security Advisory CESA-2020:5020 An update for tomcat is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

5.8CVSS7AI score0.09386EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2020/11/18 12:0 a.m.44 views

CentOS 7 : tomcat (RHSA-2020:5020)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5020 advisory. - In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approach to end-of-line parsing that allowed som...

5.8CVSS7.5AI score0.09386EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/11/11 12:0 a.m.40 views

RHEL 7 : tomcat (RHSA-2020:5020)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5020 advisory. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Mishandling of...

5.8CVSS7.5AI score0.09386EPSS
Exploits0References5
Rows per page
Query Builder