Описание
Apache Tomcat Connectors (mod_jk) before 1.2.41 ignores JkUnmount rules for subtrees of previous JkMount rules, which allows remote attackers to access otherwise restricted artifacts via unspecified vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 1:1.2.40+svn150520-1 |
| bionic | not-affected | 1:1.2.40+svn150520-1 |
| cosmic | not-affected | 1:1.2.40+svn150520-1 |
| devel | not-affected | 1:1.2.40+svn150520-1 |
| disco | not-affected | 1:1.2.40+svn150520-1 |
| esm-apps/bionic | not-affected | 1:1.2.40+svn150520-1 |
| esm-apps/xenial | not-affected | 1:1.2.40+svn150520-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| lucid | ignored | end of life |
| precise | ignored | end of life |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
Apache Tomcat Connectors (mod_jk) before 1.2.41 ignores JkUnmount rules for subtrees of previous JkMount rules, which allows remote attackers to access otherwise restricted artifacts via unspecified vectors.
Apache Tomcat Connectors (mod_jk) before 1.2.41 ignores JkUnmount rules for subtrees of previous JkMount rules, which allows remote attackers to access otherwise restricted artifacts via unspecified vectors.
Apache Tomcat Connectors (mod_jk) before 1.2.41 ignores JkUnmount rule ...
Apache Tomcat Connectors (mod_jk) before 1.2.41 ignores JkUnmount rules for subtrees of previous JkMount rules, which allows remote attackers to access otherwise restricted artifacts via unspecified vectors.
EPSS
5 Medium
CVSS2