Количество 14
Количество 14
CVE-2018-8037
If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NIO2 connectors that did not correctly track the closure of the connection when an async request was completed by the application and timed out by the container at the same time. This could also result in a user seeing a response intended for another user. Versions Affected: Apache Tomcat 9.0.0.M9 to 9.0.9 and 8.5.5 to 8.5.31.
CVE-2018-8037
If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NIO2 connectors that did not correctly track the closure of the connection when an async request was completed by the application and timed out by the container at the same time. This could also result in a user seeing a response intended for another user. Versions Affected: Apache Tomcat 9.0.0.M9 to 9.0.9 and 8.5.5 to 8.5.31.
CVE-2018-8037
If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NIO2 connectors that did not correctly track the closure of the connection when an async request was completed by the application and timed out by the container at the same time. This could also result in a user seeing a response intended for another user. Versions Affected: Apache Tomcat 9.0.0.M9 to 9.0.9 and 8.5.5 to 8.5.31.
CVE-2018-8037
If an async request was completed by the application at the same time ...
GHSA-6v52-mj5r-7j2m
Apache Tomcat Race Condition vulnerability
BDU:2019-04412
Уязвимость сервера приложений Apache Tomcat, вызванная ошибками синхронизации при использовании общего ресурса, позволяющая нарушителю раскрыть защищаемую информацию
openSUSE-SU-2018:3054-1
Security update for tomcat
openSUSE-SU-2018:2740-1
Security update for tomcat
SUSE-SU-2018:3011-2
Security update for tomcat
SUSE-SU-2018:3011-1
Security update for tomcat
SUSE-SU-2018:2699-1
Security update for tomcat
RLSA-2019:1529
Important: pki-deps:10.6 security update
ELSA-2019-1529
ELSA-2019-1529: pki-deps:10.6 security update (IMPORTANT)
SUSE-SU-2018:3388-1
Security update for tomcat
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-8037 If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NIO2 connectors that did not correctly track the closure of the connection when an async request was completed by the application and timed out by the container at the same time. This could also result in a user seeing a response intended for another user. Versions Affected: Apache Tomcat 9.0.0.M9 to 9.0.9 and 8.5.5 to 8.5.31. | CVSS3: 5.9 | 5% Низкий | почти 7 лет назад |
 | CVE-2018-8037 If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NIO2 connectors that did not correctly track the closure of the connection when an async request was completed by the application and timed out by the container at the same time. This could also result in a user seeing a response intended for another user. Versions Affected: Apache Tomcat 9.0.0.M9 to 9.0.9 and 8.5.5 to 8.5.31. | CVSS3: 9.1 | 5% Низкий | почти 7 лет назад |
 | CVE-2018-8037 If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NIO2 connectors that did not correctly track the closure of the connection when an async request was completed by the application and timed out by the container at the same time. This could also result in a user seeing a response intended for another user. Versions Affected: Apache Tomcat 9.0.0.M9 to 9.0.9 and 8.5.5 to 8.5.31. | CVSS3: 5.9 | 5% Низкий | почти 7 лет назад |
| CVE-2018-8037 If an async request was completed by the application at the same time ... | CVSS3: 5.9 | 5% Низкий | почти 7 лет назад |
| GHSA-6v52-mj5r-7j2m Apache Tomcat Race Condition vulnerability | CVSS3: 5.9 | 5% Низкий | больше 6 лет назад |
 | BDU:2019-04412 Уязвимость сервера приложений Apache Tomcat, вызванная ошибками синхронизации при использовании общего ресурса, позволяющая нарушителю раскрыть защищаемую информацию | CVSS3: 5.9 | 5% Низкий | почти 7 лет назад |
 | openSUSE-SU-2018:3054-1 Security update for tomcat | больше 6 лет назад | ||
| openSUSE-SU-2018:2740-1 Security update for tomcat | почти 7 лет назад | ||
| SUSE-SU-2018:3011-2 Security update for tomcat | больше 6 лет назад | ||
| SUSE-SU-2018:3011-1 Security update for tomcat | больше 6 лет назад | ||
| SUSE-SU-2018:2699-1 Security update for tomcat | почти 7 лет назад | ||
 | RLSA-2019:1529 Important: pki-deps:10.6 security update | около 6 лет назад | ||
| ELSA-2019-1529 ELSA-2019-1529: pki-deps:10.6 security update (IMPORTANT) | почти 6 лет назад | ||
| SUSE-SU-2018:3388-1 Security update for tomcat | больше 6 лет назад |
Уязвимостей на страницу