Vulnerability Change Records for CVE-2016-0714

Change History

Modified Analysis 3/01/2016 11:31:31 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
Configuration 1
     OR
          *cpe:2.3:a:apache:tomcat:7.0.67:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.65:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.30:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.3:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.29:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.28:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.27:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:9.0.0:m1:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.26:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.24:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.23:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.22:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.21:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.20:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.18:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.17:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.15:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.14:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.12:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.1:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc5:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc3:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc10:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc1:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.64:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.63:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.62:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.61:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.59:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.57:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.56:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.55:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.54:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.53:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.52:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.50:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.5:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.47:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.42:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.41:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.40:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.4:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.39:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.37:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.35:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.34:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.33:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.32:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.30:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.29:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.28:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.27:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.26:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.25:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.23:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.2:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.44:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.43:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.41:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.4:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.4:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.39:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.37:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.36:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.35:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.33:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.32:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.30:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.29:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.28:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.26:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.24:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.20:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.2:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.2:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.2:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.18:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.16:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.1:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.1:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.0:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.0:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Added CVSS V3

								
							
							
						
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
CWE-264
Changed Reference Type
http://tomcat.apache.org/security-6.html No Types Assigned
http://tomcat.apache.org/security-6.html Advisory
Changed Reference Type
http://tomcat.apache.org/security-7.html No Types Assigned
http://tomcat.apache.org/security-7.html Advisory
Changed Reference Type
http://tomcat.apache.org/security-8.html No Types Assigned
http://tomcat.apache.org/security-8.html Advisory
Changed Reference Type
http://tomcat.apache.org/security-9.html No Types Assigned
http://tomcat.apache.org/security-9.html Advisory

CVE Modified by Red Hat, Inc. 12/05/2016 10:5:31 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1035069 [No Types Assigned]

CVE Modified by Source 10/25/2016 10:1:56 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

CVE Modified by Red Hat, Inc. 12/02/2016 10:17:41 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00047.html [No Types Assigned]
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00069.html [No Types Assigned]
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00082.html [No Types Assigned]
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00085.html [No Types Assigned]
Added Reference

								
							
							
						
https://bto.bluecoat.com/security-advisory/sa118 [No Types Assigned]

CVE Modified by Red Hat, Inc. 2/03/2020 7:15:20 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

CVE Modified by Source 6/10/2016 10:0:52 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150442
Added Reference

								
							
							
						
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158626

CVE Modified by Red Hat, Inc. 10/19/2017 9:29:08 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html [No Types Assigned]

CVE Modified by Source 7/18/2016 9:59:18 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.debian.org/security/2016/dsa-3609
Added Reference

								
							
							
						
http://www.ubuntu.com/usn/USN-3024-1

CVE Modified by Red Hat, Inc. 3/21/2019 11:59:22 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

CVE Modified by Red Hat, Inc. 4/15/2019 8:30:23 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

CVE Modified by Source 10/26/2016 9:59:36 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html

CVE Modified by Source 4/25/2016 9:59:24 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.debian.org/security/2016/dsa-3530

CVE Modified by Red Hat, Inc. 6/30/2017 9:29:30 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.gentoo.org/glsa/201705-09 [No Types Assigned]

CVE Modified by Source 10/14/2016 10:4:49 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2016-2045.html
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

CVE Modified by Source 7/27/2016 9:59:35 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://h20565.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150442
Added Reference

								
							
							
						
https://h20565.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158626

CVE Modified by Red Hat, Inc. 4/15/2019 12:30:24 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

CVE Modified by Source 8/22/2016 10:10:15 PM

Action Type Old Value New Value
Removed Reference
https://h20565.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150442

								
						
Removed Reference
https://h20565.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158626

								
						

Modified Analysis 7/20/2016 11:23:28 AM

Action Type Old Value New Value
Changed CPE Configuration
Configuration 1
     OR
          *cpe:2.3:a:apache:tomcat:7.0.67:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.65:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.30:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.3:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.29:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.28:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.27:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:9.0.0:m1:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.26:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.24:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.23:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.22:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.21:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.20:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.18:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.17:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.15:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.14:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.12:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.1:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc5:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc3:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc10:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc1:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.64:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.63:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.62:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.61:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.59:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.57:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.56:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.55:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.54:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.53:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.52:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.50:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.5:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.47:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.42:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.41:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.40:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.4:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.39:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.37:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.35:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.34:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.33:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.32:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.30:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.29:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.28:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.27:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.26:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.25:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.23:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.2:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.44:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.43:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.41:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.4:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.4:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.39:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.37:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.36:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.35:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.33:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.32:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.30:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.29:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.28:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.26:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.24:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.20:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.2:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.2:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.2:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.18:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.16:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.1:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.1:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.0:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.0:*:*:*:*:*:*:*
Configuration 2
     OR
          *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Configuration 1
     OR
          *cpe:2.3:a:apache:tomcat:7.0.67:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.65:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.30:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.3:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.29:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.28:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.27:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:9.0.0:m1:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.26:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.24:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.23:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.22:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.21:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.20:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.18:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.17:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.15:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.14:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.12:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.1:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc5:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc3:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc10:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:8.0.0:rc1:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.64:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.63:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.62:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.61:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.59:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.57:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.56:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.55:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.54:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.53:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.52:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.50:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.5:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.47:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.42:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.41:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.40:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.4:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.39:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.37:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.35:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.34:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.33:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.32:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.30:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.29:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.28:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.27:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.26:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.25:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.23:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.2:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.44:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.43:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.41:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.4:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.4:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.39:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.37:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.36:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.35:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.33:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.32:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.30:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.29:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.28:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.26:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.24:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.20:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.2:beta:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.2:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.2:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.18:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.16:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.1:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.1:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.0:alpha:*:*:*:*:*:*
          *cpe:2.3:a:apache:tomcat:6.0.0:*:*:*:*:*:*:*
Configuration 2
     OR
          *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
          *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Configuration 3
     OR
          *cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
          *cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
          *cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
          *cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*

CVE Modified by Red Hat, Inc. 2/13/2020 12:15:24 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

CVE Modified by Red Hat, Inc. 6/01/2018 9:29:01 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.netapp.com/advisory/ntap-20180531-0001/ [No Types Assigned]

CVE Modified by Red Hat, Inc. 11/28/2016 2:54:57 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securityfocus.com/bid/83327 [No Types Assigned]

CVE Modified by Red Hat, Inc. 3/25/2019 7:34:45 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

Initial CVE Analysis 3/01/2016 10:37:11 AM

Action Type Old Value New Value

CVE Modified by Red Hat, Inc. 7/18/2018 9:29:03 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html [No Types Assigned]

CVE Modified by Source 8/19/2016 10:1:19 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://marc.info/?l=bugtraq&m=145974991225029&w=2

CVE Modified by Red Hat, Inc. 1/04/2018 9:30:29 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2016-2599.html [No Types Assigned]
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2016-2807.html [No Types Assigned]
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2016-2808.html [No Types Assigned]

CVE Modified by Red Hat, Inc. 11/29/2016 10:3:35 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2016-1089.html [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2016:1087 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2016:1088 [No Types Assigned]

CVE Modified by Source 8/16/2016 10:0:02 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05054964

CVE Modified by Source 7/28/2016 9:59:30 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.debian.org/security/2016/dsa-3552

CVE Modified by Red Hat, Inc. 7/25/2017 9:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1037640 [No Types Assigned]