Lucene search
F5F5:K02524143HistoryMar 23, 2017 - 12:00 a.m.
K02524143 : Apache Tomcat vulnerability CVE-2016-8747
2017-03-2300:00:00
my.f5.com
9
Security Advisory Description
An information disclosure issue was discovered in Apache Tomcat 8.5.7 to 8.5.9 and 9.0.0.M11 to 9.0.0.M15 in reverse-proxy configurations. Http11InputBuffer.java allows remote attackers to read data that was intended to be associated with a different request. (CVE-2016-8747)
Impact
There is no impact; F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 |
Related
openvas
openvas
Apache Tomcat Reverse Proxy Information Disclosure Vulnerability - Linux
2017-03-24 00:00:00
Apache Tomcat Reverse Proxy Information Disclosure Vulnerability - Windows
2017-03-24 00:00:00
osv
osv
CVE-2016-8747
2017-03-14 09:59:00
photon
photon
prion
prion
Information disclosure
2017-03-14 09:59:00
nessus
nessus
Apache Tomcat 9.0.0.M11 < 9.0.0.M17
2017-04-13 00:00:00
Apache Tomcat 8.5.7 < 8.5.11
2017-04-13 00:00:00
Photon OS 1.0: Apache PHSA-2017-0012 (deprecated)
2018-08-17 00:00:00
nvd
nvd
CVE-2016-8747
2017-03-14 09:59:00
debiancve
debiancve
CVE-2016-8747
2017-03-14 09:59:00
cve
cve
CVE-2016-8747
2017-03-14 09:59:00
redhatcve
redhatcve
CVE-2016-8747
2017-03-14 10:19:32
tomcat
tomcat
Fixed in Apache Tomcat 8.5.11
2017-01-16 00:00:00
Fixed in Apache Tomcat 9.0.0.M17
2017-01-16 00:00:00
cvelist
cvelist
CVE-2016-8747
2017-03-14 09:02:00
ubuntucve
ubuntucve
CVE-2016-8747
2017-03-14 00:00:00
veracode
veracode
Information Disclosure
2017-03-14 05:52:35
github
github