Количество 12
Количество 12
GHSA-cw54-59pw-4g8c
Apache Tomcat Improper Access Control vulnerability
CVE-2016-8735
Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.
CVE-2016-8735
Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.
CVE-2016-8735
Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.
CVE-2016-8735
Remote code execution is possible with Apache Tomcat before 6.0.48, 7. ...
BDU:2017-01545
Уязвимость сервера приложений Apache Tomcat, позволяющая нарушителю выполнить произвольный код
openSUSE-SU-2016:3144-1
Security update for tomcat
openSUSE-SU-2016:3129-1
Security update for tomcat
SUSE-SU-2016:3081-1
Security update for tomcat
SUSE-SU-2016:3079-1
Security update for tomcat
SUSE-SU-2017:1632-1
Security update for tomcat6
SUSE-SU-2017:1660-1
Security update for tomcat
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-cw54-59pw-4g8c Apache Tomcat Improper Access Control vulnerability | CVSS3: 9.8 | 94% Критический | больше 3 лет назад |
 | CVE-2016-8735 Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types. | CVSS3: 9.8 | 94% Критический | больше 8 лет назад |
 | CVE-2016-8735 Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types. | CVSS3: 8.1 | 94% Критический | почти 9 лет назад |
 | CVE-2016-8735 Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types. | CVSS3: 9.8 | 94% Критический | больше 8 лет назад |
| CVE-2016-8735 Remote code execution is possible with Apache Tomcat before 6.0.48, 7. ... | CVSS3: 9.8 | 94% Критический | больше 8 лет назад |
 | BDU:2017-01545 Уязвимость сервера приложений Apache Tomcat, позволяющая нарушителю выполнить произвольный код | CVSS2: 7.5 | 94% Критический | больше 8 лет назад |
 | openSUSE-SU-2016:3144-1 Security update for tomcat | почти 9 лет назад | ||
| openSUSE-SU-2016:3129-1 Security update for tomcat | почти 9 лет назад | ||
| SUSE-SU-2016:3081-1 Security update for tomcat | почти 9 лет назад | ||
| SUSE-SU-2016:3079-1 Security update for tomcat | почти 9 лет назад | ||
| SUSE-SU-2017:1632-1 Security update for tomcat6 | больше 8 лет назад | ||
| SUSE-SU-2017:1660-1 Security update for tomcat | больше 8 лет назад |
Уязвимостей на страницу