exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2011-5064

больше 13 лет назад

DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.

CVSS2: 4.3

EPSS: Низкий

CVE-2011-5064

больше 13 лет назад

DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.

CVSS2: 4.3

EPSS: Низкий

CVE-2011-5064

больше 13 лет назад

DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.

CVSS2: 4.3

EPSS: Низкий

CVE-2011-5064

больше 13 лет назад

DigestAuthenticator.java in the HTTP Digest Access Authentication impl ...

CVSS2: 4.3

EPSS: Низкий

GHSA-6cr4-7c7p-p3xv

около 3 лет назад

Use of Hard-coded Cryptographic Key in Apache Tomcat

EPSS: Низкий

ELSA-2011-1845

больше 13 лет назад

ELSA-2011-1845: tomcat5 security update (MODERATE)

EPSS: Низкий

ELSA-2011-1780

больше 13 лет назад

ELSA-2011-1780: tomcat6 security and bug fix update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2011-5064 DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.	CVSS2: 4.3	5% Низкий	больше 13 лет назад
CVE-2011-5064 DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.	CVSS2: 4.3	5% Низкий	больше 13 лет назад
CVE-2011-5064 DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.	CVSS2: 4.3	5% Низкий	больше 13 лет назад
CVE-2011-5064 DigestAuthenticator.java in the HTTP Digest Access Authentication impl ...	CVSS2: 4.3	5% Низкий	больше 13 лет назад
GHSA-6cr4-7c7p-p3xv Use of Hard-coded Cryptographic Key in Apache Tomcat		5% Низкий	около 3 лет назад
ELSA-2011-1845 ELSA-2011-1845: tomcat5 security update (MODERATE)			больше 13 лет назад
ELSA-2011-1780 ELSA-2011-1780: tomcat6 security and bug fix update (MODERATE)			больше 13 лет назад

Уязвимостей на страницу