Количество 10
Количество 10
GHSA-4c43-cwvx-9crh
Improper Access Control in Apache Tomcat
CVE-2014-7810
The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemented by an inaccessible class, which allows attackers to bypass a SecurityManager protection mechanism via a web application that leverages use of incorrect privileges during EL evaluation.
CVE-2014-7810
The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemented by an inaccessible class, which allows attackers to bypass a SecurityManager protection mechanism via a web application that leverages use of incorrect privileges during EL evaluation.
CVE-2014-7810
The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemented by an inaccessible class, which allows attackers to bypass a SecurityManager protection mechanism via a web application that leverages use of incorrect privileges during EL evaluation.
CVE-2014-7810
The Expression Language (EL) implementation in Apache Tomcat 6.x befor ...
SUSE-SU-2015:1281-1
Security update for tomcat
ELSA-2016-0492
ELSA-2016-0492: tomcat6 security and bug fix update (MODERATE)
SUSE-SU-2015:1565-1
Security update for tomcat6
ELSA-2016-2046
ELSA-2016-2046: tomcat security update (IMPORTANT)
SUSE-SU-2015:1337-1
Security update for tomcat6
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-4c43-cwvx-9crh Improper Access Control in Apache Tomcat | 9% Низкий | около 3 лет назад | |
 | CVE-2014-7810 The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemented by an inaccessible class, which allows attackers to bypass a SecurityManager protection mechanism via a web application that leverages use of incorrect privileges during EL evaluation. | CVSS2: 5 | 9% Низкий | около 10 лет назад |
 | CVE-2014-7810 The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemented by an inaccessible class, which allows attackers to bypass a SecurityManager protection mechanism via a web application that leverages use of incorrect privileges during EL evaluation. | CVSS2: 5.8 | 9% Низкий | около 10 лет назад |
 | CVE-2014-7810 The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemented by an inaccessible class, which allows attackers to bypass a SecurityManager protection mechanism via a web application that leverages use of incorrect privileges during EL evaluation. | CVSS2: 5 | 9% Низкий | около 10 лет назад |
| CVE-2014-7810 The Expression Language (EL) implementation in Apache Tomcat 6.x befor ... | CVSS2: 5 | 9% Низкий | около 10 лет назад |
 | SUSE-SU-2015:1281-1 Security update for tomcat | 9% Низкий | около 10 лет назад | |
| ELSA-2016-0492 ELSA-2016-0492: tomcat6 security and bug fix update (MODERATE) | около 9 лет назад | ||
| SUSE-SU-2015:1565-1 Security update for tomcat6 | почти 10 лет назад | ||
| ELSA-2016-2046 ELSA-2016-2046: tomcat security update (IMPORTANT) | больше 8 лет назад | ||
| SUSE-SU-2015:1337-1 Security update for tomcat6 | почти 12 лет назад |
Уязвимостей на страницу