Lucene search
K

4 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.23 views

Astra Linux – Vulnerability in Tomcat9

Path Equivalence: The path ‘file.Name’ Internal Dot leads to remote code execution, information disclosure, and the addition of malicious content to uploaded files via the write-enabled default servlet in Apache Tomcat. This issue affects Apache Tomcat versions as follows: - 11.0.0-M1 through...

10CVSS7.4AI score0.99945EPSS
Exploits46References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2025-24813

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Path Equivalence: 'file.Name' Internal Dot leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files via...

10CVSS8.2AI score0.99945EPSS
Exploits46References2
Amazon
Amazon
added 2025/04/01 12:0 a.m.8 views

Important: tomcat9

Issue Overview: Path Equivalence: 'file.Name' Internal Dot leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files via write enabled Default Servlet in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.2, from...

10CVSS8.3AI score0.99945EPSS
Exploits46
Github Security Blog
Github Security Blog
added 2025/03/10 6:31 p.m.144 views

Apache Tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT

Path Equivalence: 'file.Name' Internal Dot leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files via write enabled Default Servlet in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.2, from 10.1.0-M1 through...

10CVSS9.2AI score0.99945EPSS
Exploits46References15Affected Software2
Rows per page
Query Builder