| Added |
CVSS V3.1 |
|
NIST AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
|
| Added |
CVSS V2 |
|
NIST (AV:N/AC:M/Au:N/C:N/I:P/A:N)
|
| Added |
CWE |
|
NIST CWE-79
|
| Added |
CPE Configuration |
|
OR
*cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 8.5.50 up to (including) 8.5.81
*cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 9.0.30 up to (including) 9.0.64
*cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 10.0.0 up to (including) 10.0.22
*cpe:2.3:a:apache:tomcat:10.1.0:milestone1:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone10:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone11:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone12:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone13:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone14:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone15:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone16:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone2:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone3:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone4:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone5:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone6:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone7:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone8:*:*:*:*:*:*
*cpe:2.3:a:apache:tomcat:10.1.0:milestone9:*:*:*:*:*:*
|
| Changed |
Reference Type |
http://www.openwall.com/lists/oss-security/2022/06/23/1 No Types Assigned
|
http://www.openwall.com/lists/oss-security/2022/06/23/1 Mailing List, Third Party Advisory
|
| Changed |
Reference Type |
https://lists.apache.org/thread/k04zk0nq6w57m72w5gb0r6z9ryhmvr4k No Types Assigned
|
https://lists.apache.org/thread/k04zk0nq6w57m72w5gb0r6z9ryhmvr4k Mailing List, Release Notes, Third Party Advisory
|
| Added |
CVSS V2 Metadata |
|
Victim must voluntarily interact with attack mechanism
|
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
