Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/07/18 12:0 a.m.9 views

Apache Tomcat 9.0.0-M1 < 9.0.107 Multiple Vulnerabilities

The version of Apache Tomcat installed on the remote host is 9.0.0-M1 prior to 9.0.107, 10.1.0-M1 prior to 10.1.43 or 11.0.0-M1 prior to 11.0.9. It is, therefore, affected by multiple vulnerabilities : - A race condition on connection close could trigger a JVM crash when using the APR/Native...

7.5CVSS9.7AI score0.0196EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/06/25 12:0 a.m.6 views

SUSE SLES15: libpython3_9-1_0 / libpython3_9-1_0-32bit / python39 / etc (SUSE-SU-2025:02050-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02050-1 advisory. python39 was updated from version 3.9.21 to version 3.9.23: - Security issues fixed: CVE-2025-4516: Fixed blocking...

9.4CVSS6.7AI score0.01184EPSS
Exploits14References18
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2022-29885

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly...

7.5CVSS7.4AI score0.71653EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.43 views

RHEL 6 : tomcat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tomcat: Information Disclosure when using VirtualDirContext CVE-2017-12616 - Apache Tomcat 5.5.0 through...

7.5CVSS7.3AI score0.708EPSS
Exploits10References3
F5 Networks
F5 Networks
added 2023/02/21 6:49 p.m.228 views

K47096851: Apache Tomcat vulnerability CVE-2022-29885

Security Advisory Description The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the...

7.5CVSS8.6AI score0.71653EPSS
Exploits5
NVD
NVD
added 2022/05/12 8:15 a.m.32 views

CVE-2022-29885

The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor does provide...

7.5CVSS0.71653EPSS
Exploits5References6
Prion
Prion
added 2022/05/12 8:15 a.m.37 views

Code injection

The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor does provide...

5CVSS7.4AI score0.71653EPSS
Exploits5References6Affected Software3
UbuntuCve
UbuntuCve
added 2022/05/12 8:15 a.m.67 views

CVE-2022-29885

The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor does provide...

7.5CVSS7.1AI score0.71653EPSS
Exploits5References5
Debian CVE
Debian CVE
added 2022/05/12 12:0 a.m.53 views

CVE-2022-29885

The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor does provide...

7.5CVSS8.8AI score0.71653EPSS
Exploits5
Cvelist
Cvelist
added 2022/05/12 12:0 a.m.33 views

CVE-2022-29885 EncryptInterceptor does not provide complete protection on insecure networks

The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor does provide...

7.8AI score0.71653EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.50 views

Apache Tomcat 10.1.0.M1 < 10.1.0.M15

The version of Tomcat installed on the remote host is prior to 10.1.0.M15. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat10.1.0-m15security-10 advisory. - The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and...

7.5CVSS8.1AI score0.71653EPSS
Exploits5References3
OSV
OSV
added 2015/09/15 2:55 p.m.6 views

MGASA-2015-0368 Updated qemu packages fix security vulnerabilities

Updated qemu packages fix security vulnerabilities: Qemu emulator built with the RTL8139 emulation support is vulnerable to an information leakage flaw. It could occur while processing network packets under RTL8139 controller's C+ mode of operation. A guest user could use this flaw to read...

9.3CVSS5.6AI score0.13288EPSS
Exploits1References6
Rows per page
Query Builder