Lucene search
K

6 matches found

OSV
OSV
added 2023/06/21 12:30 p.m.1 views

GHSA-MPPV-79CH-VW6Q Apache Tomcat vulnerable to information leak

A regression in the fix for bug 66512 in Apache Tomcat 11.0.0-M5, 10.1.8, 9.0.74 and 8.5.88 meant that, if a response did not include any HTTP headers no AJP SENDHEADERS message would be sent for the response which in turn meant that at least one AJP proxy modproxyajp would use the response heade...

7.5CVSS7.1AI score0.01116EPSS
Exploits0References14
OSV
OSV
added 2023/06/21 11:15 a.m.3 views

DEBIAN-CVE-2023-34981

A regression in the fix for bug 66512 in Apache Tomcat 11.0.0-M5, 10.1.8, 9.0.74 and 8.5.88 meant that, if a response did not include any HTTP headers no AJP SENDHEADERS messare woudl be sent for the response which in turn meant that at least one AJP proxy modproxyajp would use the response heade...

7.5CVSS6.6AI score0.01116EPSS
Exploits0References1
OSV
OSV
added 2023/06/21 11:15 a.m.3 views

UBUNTU-CVE-2023-34981

A regression in the fix for bug 66512 in Apache Tomcat 11.0.0-M5, 10.1.8, 9.0.74 and 8.5.88 meant that, if a response did not include any HTTP headers no AJP SENDHEADERS messare woudl be sent for the response which in turn meant that at least one AJP proxy modproxyajp would use the response heade...

7.5CVSS7.1AI score0.01116EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/11/03 3:14 p.m.4 views

undertow: Double AJP response for 400 from EAP 7 results in CPING failures

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second...

7.5CVSS7.3AI score0.01258EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/11/03 2:54 p.m.4 views

undertow: Double AJP response for 400 from EAP 7 results in CPING failures

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second...

7.5CVSS7.3AI score0.01258EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/06/06 3:54 p.m.2 views

undertow: Double AJP response for 400 from EAP 7 results in CPING failures

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second...

7.5CVSS7.3AI score0.01258EPSS
Exploits0References4
Rows per page
Query Builder