Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:7125
HistoryJul 23, 2018 - 6:35 a.m.

Information Disclosure

2018-07-2306:35:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
18

EPSS

0.004

Percentile

75.0%

tomcat is vulnerable to information disclosure attacks. The vulnerability exists due to the mishandling of close() in the NIO and NIO2 connectors where user sessions can be mixed up, causing information disclosure.