Multiple vulnerabilities in Apache Tomcat

Descripción

Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface.

Below is a complete list of vulnerabilities:

1. An information disclosure vulnerability can be exploited to obtain sensitive information.
2. A security UI vulnerability in HTTP/2 client can be exploited remotely to spoof user interface.

Notas informativas originales

• Apache Tomcat 8.5.x vulnerabilities

• Apache Tomcat 9.x vulnerabilities

Explotación

Public exploits exist for this vulnerability.

Productos relacionados

• Apache-Tomcat

Lista CVE

• CVE-2021-24122
  high
• CVE-2020-17527
  critical

Leer más

Conozca las estadísticas de las vulnerabilidades que se propagan en su región statistics.securelist.com