Описание
The autodeployment process in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20, when autoDeploy is enabled, deploys appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests.
Релиз | Статус | Примечание |
---|---|---|
dapper | ignored | end of life |
devel | DNE | |
hardy | DNE | |
intrepid | DNE | |
jaunty | DNE | |
karmic | DNE | |
lucid | DNE | |
maverick | DNE | |
natty | DNE | |
oneiric | DNE |
Показывать по
Релиз | Статус | Примечание |
---|---|---|
dapper | DNE | |
devel | DNE | |
hardy | ignored | end of life |
intrepid | ignored | end of life, was needs-triage |
jaunty | ignored | end of life |
karmic | DNE | |
lucid | DNE | |
maverick | DNE | |
natty | DNE | |
oneiric | DNE |
Показывать по
Релиз | Статус | Примечание |
---|---|---|
dapper | DNE | |
devel | not-affected | 6.0.24-1 |
hardy | DNE | |
intrepid | released | 6.0.18-0ubuntu3.3 |
jaunty | released | 6.0.18-0ubuntu6.2 |
karmic | released | 6.0.20-2ubuntu2.1 |
lucid | not-affected | 6.0.24-1 |
maverick | not-affected | 6.0.24-1 |
natty | not-affected | 6.0.24-1 |
oneiric | not-affected | 6.0.24-1 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
The autodeployment process in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20, when autoDeploy is enabled, deploys appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests.
The autodeployment process in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20, when autoDeploy is enabled, deploys appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests.
The autodeployment process in Apache Tomcat 5.5.0 through 5.5.28 and 6 ...
EPSS
4.3 Medium
CVSS2