Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2017/08/09 12:0 a.m.51 views

Oracle Linux 7 : tomcat (ELSA-2017-2247)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-2247 advisory. - Resolves: rhbz1459747 CVE-2017-5664 tomcat: Security constrained bypass in error page mechanism - Resolves: rhbz1441481 CVE-2017-5647 tomcat: Incorre...

9.1CVSS6.7AI score0.83175EPSS
Exploits19References6
RedHat Linux
RedHat Linux
added 2016/11/17 8:33 p.m.3 views

tomcat: security manager bypass via setGlobalContext()

A security manager bypass flaw was found in Tomcat that could allow remote, authenticated users to access arbitrary application data, potentially resulting in a denial of service...

6.5CVSS7.4AI score0.11297EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/11/17 8:32 p.m.5 views

tomcat: security manager bypass via setGlobalContext()

A security manager bypass flaw was found in Tomcat that could allow remote, authenticated users to access arbitrary application data, potentially resulting in a denial of service...

6.5CVSS7.4AI score0.11297EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/11/03 8:12 a.m.3 views

tomcat: security manager bypass via setGlobalContext()

A security manager bypass flaw was found in Tomcat that could allow remote, authenticated users to access arbitrary application data, potentially resulting in a denial of service...

6.5CVSS7.4AI score0.11297EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/05/17 4:31 p.m.4 views

tomcat: security manager bypass via setGlobalContext()

A security manager bypass flaw was found in Tomcat that could allow remote, authenticated users to access arbitrary application data, potentially resulting in a denial of service...

6.5CVSS7.4AI score0.11297EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/05/17 4:30 p.m.5 views

tomcat: security manager bypass via setGlobalContext()

A security manager bypass flaw was found in Tomcat that could allow remote, authenticated users to access arbitrary application data, potentially resulting in a denial of service...

6.5CVSS7.4AI score0.11297EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/05/17 4:12 p.m.4 views

tomcat: security manager bypass via setGlobalContext()

A security manager bypass flaw was found in Tomcat that could allow remote, authenticated users to access arbitrary application data, potentially resulting in a denial of service...

6.5CVSS7.4AI score0.11297EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2016/03/17 12:0 a.m.5 views

The vulnerability of the Apache Tomcat application server allows a attacker to cause a service failure.

The vulnerability of the setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java of the Apache Tomcat application server is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to circumvent access...

6.5CVSS7.1AI score0.11297EPSS
Exploits0References9Affected Software1
Prion
Prion
added 2016/02/25 1:59 a.m.29 views

Design/Logic Flaw

The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M3 does not consider whether ResourceLinkFactory.setGlobalContext callers are authorized, which allows remote authenticated users to bypass...

6.5CVSS6.8AI score0.11297EPSS
Exploits0References33Affected Software3
OSV
OSV
added 2016/02/24 12:0 a.m.1 views

UBUNTU-CVE-2016-0763

The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M3 does not consider whether ResourceLinkFactory.setGlobalContext callers are authorized, which allows remote authenticated users to bypass...

6.3CVSS7.1AI score0.11297EPSS
Exploits0References4
Rows per page
Query Builder