exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 10

BDU:2016-00613

больше 9 лет назад

Уязвимость сервера приложений Apache Tomcat, позволяющая нарушителю обойти механизм защиты CSRF

CVSS2: 6.8

EPSS: Низкий

CVE-2015-5351

больше 9 лет назад

The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.

CVSS3: 8.8

EPSS: Низкий

CVE-2015-5351

больше 9 лет назад

The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.

CVSS3: 8.8

EPSS: Низкий

CVE-2015-5351

больше 9 лет назад

The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.

CVSS3: 8.8

EPSS: Низкий

CVE-2015-5351

больше 9 лет назад

The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x ...

CVSS3: 8.8

EPSS: Низкий

GHSA-w7cg-5969-678w

около 3 лет назад

Apache Tomcat allows remote attackers to bypass a CSRF protection mechanism by using a token

CVSS3: 8.8

EPSS: Низкий

openSUSE-SU-2016:0865-1

около 9 лет назад

Security update for tomcat

EPSS: Низкий

SUSE-SU-2016:0822-1

больше 9 лет назад

Security update for tomcat

EPSS: Низкий

SUSE-SU-2016:0769-1

больше 9 лет назад

Security update for tomcat

EPSS: Низкий

ELSA-2016-2599

больше 8 лет назад

ELSA-2016-2599: tomcat security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2016-00613 Уязвимость сервера приложений Apache Tomcat, позволяющая нарушителю обойти механизм защиты CSRF	CVSS2: 6.8	2% Низкий	больше 9 лет назад
CVE-2015-5351 The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.	CVSS3: 8.8	2% Низкий	больше 9 лет назад
CVE-2015-5351 The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.	CVSS3: 8.8	2% Низкий	больше 9 лет назад
CVE-2015-5351 The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a CSRF protection mechanism by using a token.	CVSS3: 8.8	2% Низкий	больше 9 лет назад
CVE-2015-5351 The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x ...	CVSS3: 8.8	2% Низкий	больше 9 лет назад
GHSA-w7cg-5969-678w Apache Tomcat allows remote attackers to bypass a CSRF protection mechanism by using a token	CVSS3: 8.8	2% Низкий	около 3 лет назад
openSUSE-SU-2016:0865-1 Security update for tomcat			около 9 лет назад
SUSE-SU-2016:0822-1 Security update for tomcat			больше 9 лет назад
SUSE-SU-2016:0769-1 Security update for tomcat			больше 9 лет назад
ELSA-2016-2599 ELSA-2016-2599: tomcat security, bug fix, and enhancement update (MODERATE)			больше 8 лет назад

Уязвимостей на страницу