Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:3110
HistoryDec 13, 2016 - 4:53 a.m.

Information Disclosure

2016-12-1304:53:40
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8

0.006 Low

EPSS

Percentile

79.4%

Apache Tomcat is vulnerable to Information Disclosure. This is caused by the error handling of the send file processing code for the NIO HTTP connector causing information leakage between requests and the response body which allows an attacker to gain access to sensitive information.