Multiple vulnerabilities in Apache Tomcat

Описание

Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface.

Below is a complete list of vulnerabilities:

1. An information disclosure vulnerability can be exploited to obtain sensitive information.
2. A security UI vulnerability in HTTP/2 client can be exploited remotely to spoof user interface.

Первичный источник обнаружения

• Apache Tomcat 8.5.x vulnerabilities
  Apache Tomcat 9.x vulnerabilities
  

Связанные продукты

• Apache-Tomcat

Список CVE

• CVE-2021-24122
  high
• CVE-2020-17527
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com