Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

GoogleOSV:OPENSUSE-SU-2024:10446-1

HistoryJun 15, 2024 - 12:00 a.m.

Vulners
/
Osv
/
tomcat-8.0.36-3.3 on GA media

tomcat-8.0.36-3.3 on GA media

2024-06-1500:00:00

Google

osv.dev

tomcat

security

package

opensuse

tumbleweed

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.8

Confidence

Low

JSON

These are all security issues fixed in the tomcat-8.0.36-3.3 package on the GA media of openSUSE Tumbleweed.

References

www.suse.com/security/cve/CVE-2013-1976

www.suse.com/security/cve/CVE-2014-0050

www.suse.com/security/cve/CVE-2015-5174

www.suse.com/security/cve/CVE-2015-5345

www.suse.com/security/cve/CVE-2015-5346

www.suse.com/security/cve/CVE-2015-5351

www.suse.com/security/cve/CVE-2016-0706

www.suse.com/security/cve/CVE-2016-0714

www.suse.com/security/cve/CVE-2016-0763

www.suse.com/security/cve/CVE-2016-3092

nessus 47

openvas 35

ubuntu 1

debian 4

ibm 33

suse 4

atlassian 3

symantec 1

mageia 1

osv 5

redhat 9

oraclelinux 4

tomcat 6

amazon 6

centos 3

freebsd 2

f5 5

cloudfoundry 1

gentoo 2

cve 3

prion 4

ubuntucve 3

nvd 5

cvelist 4

debiancve 2

seebug 1

veracode 3

github 2

nessus

Debian DSA-3609-1 : tomcat8 - security update

2016-07-01 00:00:00

Ubuntu 14.04 LTS / 16.04 LTS : Tomcat vulnerabilities (USN-3024-1)

2016-07-06 00:00:00

openSUSE Security Update : tomcat (openSUSE-2016-384)

2016-03-24 00:00:00

openvas

Debian Security Advisory DSA 3609-1 (tomcat8 - security update)

2016-07-07 00:00:00

Debian: Security Advisory (DSA-3609-1)

2016-07-07 00:00:00

Ubuntu: Security Advisory (USN-3024-1)

2016-07-06 00:00:00

ubuntu

Tomcat vulnerabilities

2016-07-05 00:00:00

debian

[SECURITY] [DSA 3609-1] tomcat8 security update

2016-06-29 19:54:21

[SECURITY] [DLA 435-1] tomcat6 security update

2016-02-27 19:09:41

[SECURITY] [DSA 3552-1] tomcat7 security update

2016-04-17 18:44:26

ibm

Security Bulletin: A vulnerability in Apache Tomcat affects Rational Reporting for Development Intelligence (CVE-2015-5174)

2018-06-17 05:14:26

Security Bulletin: Multiple vulnerabilities in tomcat affect Power Hardware Management Console

2021-09-23 01:31:39

Security Bulletin: Multiple security vulnerabilities have been identified in Jazz Reporting Service shipped with Rational Insight (CVE-2015-5345, CVE-2015-5346, CVE-2015-5351, CVE-2016-0706, CVE-2016-0714, CVE-2016-0763, CVE-2015-5174)

2018-06-17 05:10:46

suse

Security update for tomcat (important)

2016-03-23 18:09:46

Security update for tomcat (important)

2016-03-15 15:12:43

Security update for tomcat (important)

2016-03-18 19:13:35

atlassian

Upgrade Tomcat to the latest 8.0.x release

2016-02-19 00:04:16

Upgrade Tomcat to the latest 8.0.x release

2016-02-19 00:04:16

Upgrade Tomcat to the latest 8.0.x release

2016-02-19 00:04:16

symantec

SA118 : February 2016 Apache Tomcat Vulnerabilities

2016-03-15 08:00:00

mageia

Updated tomcat packages fix security vulnerabilities

2016-03-02 21:28:46

osv

tomcat6 - security update

2016-02-27 00:00:00

tomcat7 - security update

2016-04-17 00:00:00

Improper Neutralization of Input During Web Page Generation in Apache Tomcat

2022-05-14 03:13:01

redhat

(RHSA-2016:2808) Important: Red Hat JBoss Web Server 2.1.2 security update for Tomcat 7

2016-11-17 20:28:48

(RHSA-2016:1088) Moderate: Red Hat JBoss Web Server 3.0.3 update

2016-05-17 16:10:14

(RHSA-2016:1087) Moderate: Red Hat JBoss Web Server 3.0.3 update

2016-05-17 16:09:53

oraclelinux

tomcat security, bug fix, and enhancement update

2016-11-09 00:00:00

tomcat6 security and bug fix update

2016-10-10 00:00:00

tomcat security, bug fix, and enhancement update

2017-08-07 00:00:00

tomcat

Fixed in Apache Tomcat 9.0.0.M3

2016-01-05 00:00:00

Fixed in Apache Tomcat 7.0.68

2016-02-16 00:00:00

Fixed in Apache Tomcat 8.0.32

2016-02-08 00:00:00

amazon

Medium: tomcat8

2016-03-29 15:30:00

Medium: tomcat7

2016-03-29 15:30:00

Medium: tomcat6

2016-03-29 15:30:00

centos

tomcat security update

2016-11-25 15:49:52

tomcat6 security update

2016-10-11 18:36:02

tomcat5 security update

2013-05-28 18:47:52

freebsd

tomcat -- multiple vulnerabilities

2016-02-22 00:00:00

tomcat -- multiple vulnerabilities

2016-02-22 00:00:00

SOL30971148 - Apache Tomcat 6.x vulnerabilities CVE-2015-5174, CVE-2015-5345, CVE-2016-0706, and CVE-2016-0714

2016-03-22 00:00:00

SOL51025324 - Apache Tomcat 7.x vulnerabilities CVE-2015-5346, CVE-2015-5351, and CVE-2016-0763

2016-03-22 00:00:00

K51025324 : Apache Tomcat 7.x vulnerabilities CVE-2015-5346, CVE-2015-5351, and CVE-2016-0763

2016-03-22 00:00:00

cloudfoundry

USN-3024-1: tomcat6, tomcat7 vulnerabilities | Cloud Foundry

2017-01-19 00:00:00

gentoo

Apache Tomcat: Multiple vulnerabilities

2017-05-18 00:00:00

Apache Commons FileUpload: Multiple vulnerabilities

2021-07-17 00:00:00

cve

CVE-2015-5346

2016-02-25 01:59:02

CVE-2013-1976

2013-07-09 17:55:00

CVE-2015-5174

2016-02-25 01:59:00

prion

Input validation

2013-07-09 17:55:00

Session fixation

2016-02-25 01:59:00

Cross site request forgery (csrf)

2016-02-25 01:59:00

ubuntucve

CVE-2013-1976

2013-07-09 00:00:00

CVE-2015-5174

2016-02-24 00:00:00

CVE-2015-5346

2016-02-24 00:00:00

nvd

CVE-2013-1976

2013-07-09 17:55:00

CVE-2015-5351

2016-02-25 01:59:03

CVE-2015-5174

2016-02-25 01:59:00

cvelist

CVE-2015-5346

2016-02-25 01:00:00

CVE-2013-1976

2013-07-09 17:00:00

CVE-2015-5351

2016-02-25 01:00:00

debiancve

CVE-2015-5346

2016-02-25 01:59:02

CVE-2013-1976

2013-07-09 17:55:00

seebug

Apache Tomcat 不安全临时文件处理漏洞(CVE-2013-1976)

2013-05-30 00:00:00

veracode

Privilege Escalation

2019-01-15 08:53:56

Information Disclosure

2019-01-15 09:14:42

Directory Information Disclosure

2019-01-15 09:11:49

github

Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat

2022-05-14 01:10:16

Improper Neutralization of Input During Web Page Generation in Apache Tomcat

2022-05-14 03:13:01

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.8

Confidence

Low

JSON

Related for OSV:OPENSUSE-SU-2024:10446-1