2 matches found
Security update for tomcat10
This update for tomcat10 fixes the following issues: Update to Tomcat 10.1.33 Fixed CVEs: CVE-2024-52316: If the Jakarta Authentication fails with an exception, set a 500 status bsc1233434 Catalina Add: Add support for the new Servlet API method HttpServletResponse.sendEarlyHints. markt Add: 5547...
The vulnerability of the `readRemoteInvocation` method implementation in the HTTP request handler based on the Servlet-API `HttpInvokerServiceExporter` of the Spring Framework allows a attacker to execute arbitrary code.
The vulnerability of the readRemoteInvocation method implemented by the HTTP-request handler based on the Servlet-API HttpInvokerServiceExporter in the Spring Framework software platform is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows a malicious...