Количество 12
Количество 12
CVE-2016-8735
Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.
CVE-2016-8735
Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.
CVE-2016-8735
Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.
CVE-2016-8735
Remote code execution is possible with Apache Tomcat before 6.0.48, 7. ...
GHSA-cw54-59pw-4g8c
Apache Tomcat Improper Access Control vulnerability
BDU:2017-01545
Уязвимость сервера приложений Apache Tomcat, позволяющая нарушителю выполнить произвольный код
openSUSE-SU-2016:3144-1
Security update for tomcat
openSUSE-SU-2016:3129-1
Security update for tomcat
SUSE-SU-2016:3081-1
Security update for tomcat
SUSE-SU-2016:3079-1
Security update for tomcat
SUSE-SU-2017:1632-1
Security update for tomcat6
SUSE-SU-2017:1660-1
Security update for tomcat
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2016-8735 Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types. | CVSS3: 9.8 | 94% Критический | около 8 лет назад |
 | CVE-2016-8735 Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types. | CVSS3: 8.1 | 94% Критический | больше 8 лет назад |
 | CVE-2016-8735 Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types. | CVSS3: 9.8 | 94% Критический | около 8 лет назад |
| CVE-2016-8735 Remote code execution is possible with Apache Tomcat before 6.0.48, 7. ... | CVSS3: 9.8 | 94% Критический | около 8 лет назад |
| GHSA-cw54-59pw-4g8c Apache Tomcat Improper Access Control vulnerability | CVSS3: 9.8 | 94% Критический | около 3 лет назад |
 | BDU:2017-01545 Уязвимость сервера приложений Apache Tomcat, позволяющая нарушителю выполнить произвольный код | CVSS2: 7.5 | 94% Критический | около 8 лет назад |
 | openSUSE-SU-2016:3144-1 Security update for tomcat | больше 8 лет назад | ||
| openSUSE-SU-2016:3129-1 Security update for tomcat | больше 8 лет назад | ||
| SUSE-SU-2016:3081-1 Security update for tomcat | больше 8 лет назад | ||
| SUSE-SU-2016:3079-1 Security update for tomcat | больше 8 лет назад | ||
| SUSE-SU-2017:1632-1 Security update for tomcat6 | почти 8 лет назад | ||
| SUSE-SU-2017:1660-1 Security update for tomcat | почти 8 лет назад |
Уязвимостей на страницу