VYPR

rpm package

suse/tomcat&distro=SUSE Linux Enterprise Module for Web and Scripting 15

pkg:rpm/suse/tomcat&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Web%20and%20Scripting%2015

Vulnerabilities (10)

  • CVE-2019-12418Dec 23, 2019
    affected < 9.0.30-3.34.1fixed 9.0.30-3.34.1

    When Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47, 7.0.0 and 7.0.97 is configured with the JMX Remote Lifecycle Listener, a local attacker without access to the Tomcat process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack

  • CVE-2019-17563Dec 23, 2019
    affected < 9.0.30-3.34.1fixed 9.0.30-3.34.1

    When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29, 8.5.0 to 8.5.49 and 7.0.0 to 7.0.98 there was a narrow window where an attacker could perform a session fixation attack. The window was considered too narrow for an exploit to be practical but, erring on the si

  • CVE-2019-10072Jun 21, 2019
    affected < 9.0.30-3.34.1fixed 9.0.30-3.34.1

    The fix for CVE-2019-0199 was incomplete and did not address HTTP/2 connection window exhaustion on write in Apache Tomcat versions 9.0.0.M1 to 9.0.19 and 8.5.0 to 8.5.40 . By not sending WINDOW_UPDATE messages for the connection window (stream 0) clients were able to cause serve

  • CVE-2019-0221May 28, 2019
    affected < 9.0.20-3.24.2fixed 9.0.20-3.24.2

    The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be pr

  • CVE-2019-0199Apr 10, 2019
    affected < 9.0.20-3.24.2fixed 9.0.20-3.24.2

    The HTTP/2 implementation in Apache Tomcat 9.0.0.M1 to 9.0.14 and 8.5.0 to 8.5.37 accepted streams with excessive numbers of SETTINGS frames and also permitted clients to keep streams open without reading/writing request/response data. By keeping streams open for requests that ut

  • CVE-2018-11784MedOct 4, 2018
    affected < 9.0.12-3.8.3fixed 9.0.12-3.8.3

    When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory (e.g. redirecting to '/foo/' when the user requested '/foo') a specially crafted URL could be used to cause the redirect to be generated

  • CVE-2018-8037MedAug 2, 2018
    affected < 9.0.10-3.7.1fixed 9.0.10-3.7.1

    If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NIO2 connectors

  • CVE-2018-1336HigAug 2, 2018
    affected < 9.0.10-3.7.1fixed 9.0.10-3.7.1

    An improper handing of overflow in the UTF-8 decoder with supplementary characters can lead to an infinite loop in the decoder causing a Denial of Service. Versions Affected: Apache Tomcat 9.0.0.M9 to 9.0.7, 8.5.0 to 8.5.30, 8.0.0.RC1 to 8.0.51, and 7.0.28 to 7.0.86.

  • CVE-2018-8034HigAug 1, 2018
    affected < 9.0.10-3.7.1fixed 9.0.10-3.7.1

    The host name verification when using TLS with the WebSocket client was missing. It is now enabled by default. Versions Affected: Apache Tomcat 9.0.0.M1 to 9.0.9, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.52, and 7.0.35 to 7.0.88.

  • CVE-2018-8014CriMay 16, 2018
    affected < 9.0.10-3.7.1fixed 9.0.10-3.7.1

    The defaults settings for the CORS filter provided in Apache Tomcat 9.0.0.M1 to 9.0.8, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.52, 7.0.41 to 7.0.88 are insecure and enable 'supportsCredentials' for all origins. It is expected that users of the CORS filter will have configured it approp