Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
tomcatApache TomcatTOMCAT:299E545384127044523EB1661F635C30
HistoryJan 22, 2001 - 12:00 a.m.

Fixed in Apache Tomcat 3.2

2001-01-2200:00:00
Apache Tomcat
tomcat.apache.org
7

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.159 Low

EPSS

Percentile

95.9%

JSON

Low: Information disclosure CVE-2000-0759

Requesting a JSP that does not exist results in an error page that includes the full file system page of the current context.

Affects: 3.1

Important: Information disclosure CVE-2000-0672

Access to the admin context is not protected. This context allows an attacker to mount an arbitary file system path as a context. Any files accessible from this file sytem path to the account under which Tomcat is running are then visible to the attacker.

Affects: 3.1

CPENameOperatorVersion
apache tomcateq3.1

Related

nessus 2
cve 2
github 1
osv 1
veracode 1
nessus
nessus
Apache Tomcat contextAdmin Arbitrary File Access
2000-07-22 00:00:00
Apache Tomcat Nonexistent File Error Message Path Disclosure
2001-11-25 00:00:00
cve
cve
CVE-2000-0672
2000-07-20 04:00:00
CVE-2000-0759
2000-10-20 04:00:00
github
github
Jakarta Apache Tomcat Reveals Physical Paths
2022-04-30 18:14:15
osv
osv
Jakarta Apache Tomcat Reveals Physical Paths
2022-04-30 18:14:15
veracode
veracode
Information Disclosure
2019-03-25 08:40:40

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.159 Low

EPSS

Percentile

95.9%

JSON
Related for TOMCAT:299E545384127044523EB1661F635C30
nessus2cve2github1osv1veracode1