KLA12087
Multiple vulnerabilities in Apache Tomcat

Обновлено: 16/02/2021

Дата обнаружения	17/11/2020
Уровень угрозы	Warning
Описание	Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: An information disclosure vulnerability can be exploited to obtain sensitive information. A security UI vulnerability in HTTP/2 client can be exploited remotely to spoof user interface.
Пораженные продукты	Apache Tomcat 8.5.x earlier than 8.5.60 Apache Tomcat 9.x earlier than 9.0.40
Решение	Update to the latest version Tomcat 8.5 Software Downloads Tomcat 9 Software Downloads
Первичный источник обнаружения	Apache Tomcat 8.5.x vulnerabilities Apache Tomcat 9.x vulnerabilities
Оказываемое влияние ?	OSI [?] SUI [?]
Связанные продукты	Apache Tomcat
CVE-IDS	CVE-2021-241224.3Warning CVE-2020-175275.0Critical
	Узнай статистику распространения уязвимостей в твоем регионе

KLA12087Multiple vulnerabilities in Apache Tomcat