Lucene search
IBM9822553F8BA278FD32593260919E2082D6E8166F03A340137BFDB3630EA95985HistorySep 21, 2021 - 7:57 a.m.
Security Bulletin: App Connect Professional is affected by Apache Tomcat vulnerabilities.
2021-09-2107:57:54
www.ibm.com
14
apache tomcat
denial of service
app connect professional
vulnerability
7.5.3.0
7.5.4.0
7.5.5.0
remediation
fixcentral link
EPSS
0.013
Percentile
86.2%
Summary
App Connect Professional has addressed the following vulnerabilities reported in Apache Tomcat.
Vulnerability Details
CVEID:CVE-2021-30639
**DESCRIPTION:**Apache Tomcat is vulnerable to a denial of service, caused by improper error handling during non-blocking I/O. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to trigger non-blocking I/O errors resulting in a denial of service condition.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/205212 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Affected Products and Versions
App Connect Professional v 7.5.3.0
App Connect Professional v 7.5.4.0
App Connect Professional v 7.5.5.0
Remediation/Fixes
| Product | VRMF | APAR | Remediation/First Fix |
|---|---|---|---|
| App Connect Professional | 7.5.3.0 | LI82304 | 7530 Fixcentral link |
| App Connect Professional | 7.5.4.0 | LI82304 | 7540 Fixcentral link |
| App Connect Professional | 7.5.5.0 | LI82304 | 7550 Fixcentral link |
Workarounds and Mitigations
None
Related
nvd
nvd
CVE-2021-30639
2021-07-12 15:15:08
freebsd
freebsd
tomcat -- Remote Denial of Service in multiple versions
2021-03-24 00:00:00
kaspersky
kaspersky
KLA12216 DoS vulnerability in Apache Tomcat
2021-04-06 00:00:00
cve
cve
CVE-2021-30639
2021-07-12 15:15:08
prion
prion
Design/Logic Flaw
2021-07-12 15:15:00
tomcat
tomcat
Fixed in Apache Tomcat 10.0.5
2021-04-06 00:00:00
Fixed in Apache Tomcat 8.5.65
2021-04-06 00:00:00
Fixed in Apache Tomcat 9.0.45
2021-04-06 00:00:00
debiancve
debiancve
CVE-2021-30639
2021-07-12 15:15:08
f5
f5
K87895241 : Apache Tomcat vulnerability CVE-2021-30639
2021-07-29 00:00:00
osv
osv
BIT-tomcat-2021-30639
2024-03-06 11:10:12
Improper Handling of Exceptional Conditions in Apache Tomcat
2021-08-13 15:21:02
openvas
openvas
Apache Tomcat DoS Vulnerability (Jul 2021) - Windows
2021-07-13 00:00:00
Apache Tomcat DoS Vulnerability (Jul 2021) - Linux
2021-07-13 00:00:00
nessus
nessus
Apache Tomcat 10.0.3 < 10.0.5
2021-07-12 00:00:00
Apache Tomcat 8.5.0 < 8.5.65
2024-05-23 00:00:00
ibm
ibm
Security Bulletin: IBM UrbanCode Release is affected by CVE-2021-30639
2022-01-25 07:43:37
Security Bulletin: IBM UrbanCode Build is affected by CVE-2021-30639
2022-02-08 15:40:56
ubuntucve
ubuntucve
CVE-2021-30639
2021-07-12 00:00:00
redhatcve
redhatcve
CVE-2021-30639
2021-07-12 19:46:17
github
github
Improper Handling of Exceptional Conditions in Apache Tomcat
2021-08-13 15:21:02
cvelist
cvelist
CVE-2021-30639 DoS after non-blocking IO error
2021-07-12 14:55:12
photon
photon
Important Photon OS Security Update - PHSA-2021-0066
2021-07-21 00:00:00
Important Photon OS Security Update - PHSA-2021-4.0-0066
2021-07-21 00:00:00
gentoo
gentoo
Apache Tomcat: Multiple Vulnerabilities
2022-08-21 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00
Oracle Critical Patch Update Advisory - January 2022
2022-01-18 00:00:00
EPSS
0.013
Percentile
86.2%
Related for 9822553F8BA278FD32593260919E2082D6E8166F03A340137BFDB3630EA95985