Added |
CVSS V3 |
|
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
Added |
CVSS V2 |
|
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
|
Added |
CWE |
|
CWE-264
|
Added |
CPE Configuration |
|
Configuration 1
AND
OR
*cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
OR
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
Configuration 2
OR
*cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
|
Changed |
Reference Type |
http://legalhackers.com/advisories/Tomcat-RedHat-Pkgs-Root-PrivEsc-Exploit-CVE-2016-5425.html No Types Assigned
|
http://legalhackers.com/advisories/Tomcat-RedHat-Pkgs-Root-PrivEsc-Exploit-CVE-2016-5425.html Vendor Advisory
|
Changed |
Reference Type |
http://packetstormsecurity.com/files/139041/Apache-Tomcat-8-7-6-Privilege-Escalation.html No Types Assigned
|
http://packetstormsecurity.com/files/139041/Apache-Tomcat-8-7-6-Privilege-Escalation.html Third Party Advisory, VDB Entry, Exploit
|
Changed |
Reference Type |
http://rhn.redhat.com/errata/RHSA-2016-2046.html No Types Assigned
|
http://rhn.redhat.com/errata/RHSA-2016-2046.html Third Party Advisory
|
Changed |
Reference Type |
http://www.openwall.com/lists/oss-security/2016/10/10/2 No Types Assigned
|
http://www.openwall.com/lists/oss-security/2016/10/10/2 Third Party Advisory, Mailing List
|
Changed |
Reference Type |
http://www.securityfocus.com/bid/93472 No Types Assigned
|
http://www.securityfocus.com/bid/93472 Broken Link
|