exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 10

GHSA-w7cg-5969-678w

больше 3 лет назад

Apache Tomcat allows remote attackers to bypass a CSRF protection mechanism by using a token

CVSS3: 8.8

EPSS: Низкий

CVE-2015-5351

почти 10 лет назад

The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.

CVSS3: 8.8

EPSS: Низкий

CVE-2015-5351

почти 10 лет назад

The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.

CVSS3: 8.8

EPSS: Низкий

CVE-2015-5351

почти 10 лет назад

The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.

CVSS3: 8.8

EPSS: Низкий

CVE-2015-5351

почти 10 лет назад

The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x ...

CVSS3: 8.8

EPSS: Низкий

BDU:2016-00613

почти 10 лет назад

Уязвимость сервера приложений Apache Tomcat, позволяющая нарушителю обойти механизм защиты CSRF

CVSS2: 6.8

EPSS: Низкий

openSUSE-SU-2016:0865-1

почти 10 лет назад

Security update for tomcat

EPSS: Низкий

SUSE-SU-2016:0822-1

почти 10 лет назад

Security update for tomcat

EPSS: Низкий

SUSE-SU-2016:0769-1

почти 10 лет назад

Security update for tomcat

EPSS: Низкий

ELSA-2016-2599

около 9 лет назад

ELSA-2016-2599: tomcat security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-w7cg-5969-678w Apache Tomcat allows remote attackers to bypass a CSRF protection mechanism by using a token	CVSS3: 8.8	6% Низкий	больше 3 лет назад
CVE-2015-5351 The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.	CVSS3: 8.8	6% Низкий	почти 10 лет назад
CVE-2015-5351 The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.	CVSS3: 8.8	6% Низкий	почти 10 лет назад
CVE-2015-5351 The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.	CVSS3: 8.8	6% Низкий	почти 10 лет назад
CVE-2015-5351 The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x ...	CVSS3: 8.8	6% Низкий	почти 10 лет назад
BDU:2016-00613 Уязвимость сервера приложений Apache Tomcat, позволяющая нарушителю обойти механизм защиты CSRF	CVSS2: 6.8	6% Низкий	почти 10 лет назад
openSUSE-SU-2016:0865-1 Security update for tomcat			почти 10 лет назад
SUSE-SU-2016:0822-1 Security update for tomcat			почти 10 лет назад
SUSE-SU-2016:0769-1 Security update for tomcat			почти 10 лет назад
ELSA-2016-2599 ELSA-2016-2599: tomcat security, bug fix, and enhancement update (MODERATE)			около 9 лет назад

Уязвимостей на страницу