Lucene search
K

12 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/06/30 7:44 a.m.8 views

Security Bulletin: Maximo AI Service uses cryptography-46.0.6-cp311-abi3-manylinux_2_34_x86_64.whl and tomcat-embed-core-10.1.54.jar which are vulnerable to CVE-2026-39892, CVE-2026-41293, CVE-2026-43512, CVE-2026-43513 and CVE-2026-43515.

Summary Maximo AI Service uses cryptography-46.0.6-cp311-abi3-manylinux234x8664.whl and tomcat-embed-core-10.1.54.jar which are vulnerable to CVE-2026-39892, CVE-2026-41293, CVE-2026-43512, CVE-2026-43513 and CVE-2026-43515. This bulletin contains information regarding the vulnerability and its...

9.8CVSS5.9AI score0.01339EPSS
Exploits2Affected Software1
OSV
OSV
added 2026/06/20 6:53 a.m.2 views

OPENSUSE-SU-2026:21122-1 Security update for tomcat10

This update for tomcat10 fixes the following issues Update to Tomcat 10.1.55: - CVE-2026-41284: Unbounded read in WebDAV LOCK and PROPFIND handling bsc1265162. - CVE-2026-41293: HTTP/2 request headers not validated bsc1265163. - CVE-2026-42498: WebSocket authentication header exposure bsc1265165....

9.8CVSS5.9AI score0.01339EPSS
Exploits2References14
OSV
OSV
added 2026/06/20 6:53 a.m.3 views

OPENSUSE-SU-2026:21117-1 Security update for tomcat

This update for tomcat fixes the following issues Update to Tomcat 9.0.118: - CVE-2026-41284: Unbounded read in WebDAV LOCK and PROPFIND handling bsc1265162. - CVE-2026-41293: HTTP/2 request headers not validated bsc1265163. - CVE-2026-42498: WebSocket authentication header exposure bsc1265165. -...

9.8CVSS6.7AI score0.01339EPSS
Exploits2References14
Tenable Nessus
Tenable Nessus
added 2026/06/14 12:0 a.m.8 views

SUSE SLES12 Security Update : tomcat (SUSE-SU-2026:2299-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2299-1 advisory. This update for tomcat fixes the following issues Update to Tomcat 9.0.118: - CVE-2026-41284: Unbounded read in WebDAV LOCK and PROPFIND handli...

9.8CVSS6.7AI score0.01339EPSS
Exploits2References22
SUSE Linux
SUSE Linux
added 2026/06/08 10:55 a.m.10 views

Security update for tomcat

This update for tomcat fixes the following issues Update to Tomcat 9.0.118: CVE-2026-41284: Unbounded read in WebDAV LOCK and PROPFIND handling bsc1265162. CVE-2026-41293: HTTP/2 request headers not validated bsc1265163. CVE-2026-42498: WebSocket authentication header exposure bsc1265165...

8.7CVSS5.7AI score0.01339EPSS
Exploits2References28
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/05 12:0 a.m.7 views

tomcat10-10.1.55-1.1 on GA media (moderate)

tomcat10-10.1.55-1.1 on GA media Announcement ID: openSUSE-SU-2026:10926-1 Rating: moderate Cross-References: CVE-2026-41284 CVE-2026-41293 CVE-2026-42498 CVE-2026-43512 CVE-2026-43513 CVE-2026-43514 CVE-2026-43515 CVSS scores: CVE-2026-41284 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:...

8.7CVSS6.5AI score0.01339EPSS
Exploits2
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/05 12:0 a.m.7 views

tomcat11-11.0.22-1.1 on GA media (moderate)

tomcat11-11.0.22-1.1 on GA media Announcement ID: openSUSE-SU-2026:10927-1 Rating: moderate Cross-References: CVE-2026-41284 CVE-2026-41293 CVE-2026-42498 CVE-2026-43512 CVE-2026-43513 CVE-2026-43514 CVE-2026-43515 CVSS scores: CVE-2026-41284 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:...

8.7CVSS6.5AI score0.01339EPSS
Exploits2
Chainguard
Chainguard
added 2026/05/20 1:18 a.m.18 views

CVE-2026-43512 vulnerabilities

Vulnerabilities for packages: kayenta, camunda-zeebe, camunda, ontop-fips, nacos, nacos-docker, ontop, thingsboard, kayenta-fips...

9.8CVSS7AI score0.01233EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2026/05/13 3:33 a.m.11 views

SUSE CVE-2026-43512

DEPRECATED: Authentication Bypass Issues vulnerability in digest authentication in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 8.5.0 through 8.5.100, from before 7.0.0. Older unsupported...

7.3CVSS5.7AI score0.01233EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2026/05/13 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2026-43512

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DEPRECATED: Authentication Bypass Issues vulnerability in digest authentication in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through...

9.8CVSS8.1AI score0.01233EPSS
Exploits1References2
Circl
Circl
added 2026/05/12 4:25 p.m.19 views

CVE-2026-43512

creationtimestamp| type| source ---|---|--- 2026-05-12 16:25:40+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mlo7c7kphr2e 2026-05-14 00:36:38+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116570128029864306 2026-06-08 23:00:11+00:00| published-proof-of-concept|...

9.8CVSS7AI score0.01233EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/05/12 3:24 p.m.12 views

CVE-2026-43512 Apache Tomcat: Digest authenticator will authenticate any unknown user

DEPRECATED: Authentication Bypass Issues vulnerability in digest authentication in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 8.5.0 through 8.5.100, from before 7.0.0. Older unsupported...

5.7AI score0.01233EPSS
Exploits1References1
Rows per page
Query Builder