VYPR

Apache Tomcat 7

by Red Hat

CVEs (3)

  • CVE-2014-0186Jun 14, 2014
    risk 0.00cvss epss 0.02

    A certain tomcat7 package for Apache Tomcat 7 in Red Hat Enterprise Linux (RHEL) 7 allows remote attackers to cause a denial of service (CPU consumption) via a crafted request. NOTE: this vulnerability exists because of an unspecified regression.

  • CVE-2013-2051Jul 9, 2013
    risk 0.00cvss epss 0.02

    The Tomcat 6 DIGEST authentication functionality as used in Red Hat Enterprise Linux 6 allows remote attackers to bypass intended access restrictions by performing a replay attack after a nonce becomes stale. NOTE: this issue is due to an incomplete fix for CVE-2012-5887.

  • CVE-2009-2696Aug 5, 2010
    risk 0.00cvss epss 0.05

    Cross-site scripting (XSS) vulnerability in jsp/cal/cal2.jsp in the calendar application in the examples web application in Apache Tomcat on Red Hat Enterprise Linux 5, Desktop Workstation 5, and Linux Desktop 5 allows remote attackers to inject arbitrary web script or HTML via…