AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-434

http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

http://www.securityfocus.com/bid/100954

http://www.securitytracker.com/id/1039552

https://access.redhat.com/errata/RHSA-2017:3080

https://access.redhat.com/errata/RHSA-2017:3081

https://access.redhat.com/errata/RHSA-2017:3113

https://access.redhat.com/errata/RHSA-2017:3114

https://access.redhat.com/errata/RHSA-2018:0268

https://access.redhat.com/errata/RHSA-2018:0269

https://access.redhat.com/errata/RHSA-2018:0270

https://access.redhat.com/errata/RHSA-2018:0271

https://access.redhat.com/errata/RHSA-2018:0275

https://access.redhat.com/errata/RHSA-2018:0465

https://access.redhat.com/errata/RHSA-2018:0466

https://access.redhat.com/errata/RHSA-2018:2939

https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/3fd341a604c4e9eab39e7eaabbbac39c30101a022acc11dd09d7ebcb%40%3Cannounce.tomcat.apache.org%3E

https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a%40%3Cdev.tomcat.apache.org%3E

https://lists.debian.org/debian-lts-announce/2017/11/msg00009.html

https://security.netapp.com/advisory/ntap-20171018-0002/

https://security.netapp.com/advisory/ntap-20180117-0002/

https://support.f5.com/csp/article/K53173544

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03812en_us

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03828en_us

https://usn.ubuntu.com/3665-1/

https://www.exploit-db.com/exploits/42966/

https://www.exploit-db.com/exploits/43008/

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

NIST AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

NIST AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

OR
     *cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.2:beta:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.4:beta:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.5:beta:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.13:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.15:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.17:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.18:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.23:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.24:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.25:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.26:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.27:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.28:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.29:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.30:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.31:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.32:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.33:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.34:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.35:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.36:*:*:*:*:*:*:*
     *cpe

OR
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 7.0.0 up to (excluding) 7.0.82
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 8.0 up to (excluding) 8.0.47
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 8.5.0 up to (excluding) 8.5.23
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 9.0.0 up to (excluding) 9.0.1

OR
     *cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:* versions from (including) 7.3
     *cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:* versions from (including) 9.5
     *cpe:2.3:a:netapp:oncommand_balance:-:*:*:*:*:*:*:*
     *cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
     *cpe:2.3:a:netapp:oncommand_shift:-:*:*:*:*:*:*:*
     *cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*
     *cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*
     *cpe:2.3:o:netapp:element:-:*:*:*:*:vcenter_server:*:*

OR
     *cpe:2.3:a:oracle:agile_plm:9.3.3:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:agile_plm:9.3.4:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:agile_plm:9.3.5:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:endeca_information_discovery_integrator:3.1.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:endeca_information_discovery_integrator:3.2.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:enterprise_manager_for_mysql_database:12.1.0.4.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:* versions from (including) 7.3.3.0.0 up to (including) 7.3.5.3.0
     *cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:* versions from (including) 8.0.0.0.0 up to (including) 8.0.9.0.0
     *cpe:2.3:a:oracle:fmw_platform:12.2.1.2.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:fmw_platform:12.2.1.3.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:health_sciences_empirica_inspections:1.0.1.1:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:management_pack:11.2.1.0.13:*:*:*:*:goldengate:*:*
     *cpe:2.3:a:oracle:micros_lucas:2.9.5:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.0.1:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.5.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.6.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.7.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.8.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.8.1:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:* versions up to (including) 3.3.

OR
     *cpe:2.3:a:redhat:fuse:1.0:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.4.0:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:jboss_enterprise_web_server:2.0.0:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:jboss_enterprise_web_server:3.0.0:*:*:*:*:*:*:*
     *cpe:2.3:a:redhat:jboss_enterprise_web_server_text-only_advisories:-:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus_compute_node:7.4:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus_compute_node:7.5:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus_compute_node:7.6:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus_compute_node:7.7:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:6.0_s390x:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:7.0_s390x:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.4_s390x:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.5_s390x:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.6_s390x:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.7_s390x:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian:6.0_ppc64:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian:7.0_ppc64:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian_eus:7.4_ppc64:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian_eus:7.5_ppc64:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian_eus:7.6_pp

OR
     *cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
     *cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
     *cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
     *cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:esm:*:*:*

OR
     *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html No Types Assigned

http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html Patch, Third Party Advisory

http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html No Types Assigned

http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html Patch, Third Party Advisory

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html No Types Assigned

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html Patch, Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:3080 No Types Assigned

https://access.redhat.com/errata/RHSA-2017:3080 Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:3081 No Types Assigned

https://access.redhat.com/errata/RHSA-2017:3081 Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:3113 No Types Assigned

https://access.redhat.com/errata/RHSA-2017:3113 Third Party Advisory

https://access.redhat.com/errata/RHSA-2017:3114 No Types Assigned

https://access.redhat.com/errata/RHSA-2017:3114 Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:0268 No Types Assigned

https://access.redhat.com/errata/RHSA-2018:0268 Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:0269 No Types Assigned

https://access.redhat.com/errata/RHSA-2018:0269 Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:0270 No Types Assigned

https://access.redhat.com/errata/RHSA-2018:0270 Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:0271 No Types Assigned

https://access.redhat.com/errata/RHSA-2018:0271 Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:0275 No Types Assigned

https://access.redhat.com/errata/RHSA-2018:0275 Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:0465 No Types Assigned

https://access.redhat.com/errata/RHSA-2018:0465 Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:0466 No Types Assigned

https://access.redhat.com/errata/RHSA-2018:0466 Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2939 No Types Assigned

https://access.redhat.com/errata/RHSA-2018:2939 Third Party Advisory

https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/3fd341a604c4e9eab39e7eaabbbac39c30101a022acc11dd09d7ebcb%40%3Cannounce.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/3fd341a604c4e9eab39e7eaabbbac39c30101a022acc11dd09d7ebcb%40%3Cannounce.tomcat.apache.org%3E Issue Tracking, Mailing List

https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a%40%3Cdev.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a%40%3Cdev.tomcat.apache.org%3E Mailing List, Patch

https://lists.debian.org/debian-lts-announce/2017/11/msg00009.html No Types Assigned

https://lists.debian.org/debian-lts-announce/2017/11/msg00009.html Mailing List, Third Party Advisory

https://security.netapp.com/advisory/ntap-20171018-0002/ No Types Assigned

https://security.netapp.com/advisory/ntap-20171018-0002/ Third Party Advisory

https://security.netapp.com/advisory/ntap-20180117-0002/ No Types Assigned

https://security.netapp.com/advisory/ntap-20180117-0002/ Third Party Advisory

https://support.f5.com/csp/article/K53173544 No Types Assigned

https://support.f5.com/csp/article/K53173544 Third Party Advisory

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03812en_us No Types Assigned

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03812en_us Third Party Advisory

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03828en_us No Types Assigned

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03828en_us Third Party Advisory

https://usn.ubuntu.com/3665-1/ No Types Assigned

https://usn.ubuntu.com/3665-1/ Third Party Advisory

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html No Types Assigned

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html Patch, Third Party Advisory

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m15:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone15:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m10:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone10:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m12:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone12:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m1:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone1:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m9:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone9:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m21:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone21:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m19:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone19:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m18:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone18:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m3:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone3:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m17:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone17:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m16:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone16:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m8:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone8:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m13:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone13:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m7:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone7:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m6:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone6:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m2:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone2:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m20:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone20:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m5:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone5:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m14:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone14:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m11:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone11:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m4:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone4:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:m22:*:*:*:*:*:*

OR
     *cpe:2.3:a:apache:tomcat:9.0.0:milestone22:*:*:*:*:*:*

Apache Software Foundation https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/3fd341a604c4e9eab39e7eaabbbac39c30101a022acc11dd09d7ebcb%40%3Cannounce.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a%40%3Cdev.tomcat.apache.org%3E [No types assigned]

Apache Software Foundation https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/3fd341a604c4e9eab39e7eaabbbac39c30101a022acc11dd09d7ebcb@%3Cannounce.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E

Apache Software Foundation https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a@%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html [No Types Assigned]

https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://support.f5.com/csp/article/K53173544 [No Types Assigned]

https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

https://access.redhat.com/errata/RHSA-2018:2939 [No Types Assigned]

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html [No Types Assigned]

https://usn.ubuntu.com/3665-1/ [No Types Assigned]

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03812en_us [No Types Assigned]

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03828en_us [No Types Assigned]

http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html [No Types Assigned]

https://access.redhat.com/errata/RHSA-2018:0465 [No Types Assigned]

https://access.redhat.com/errata/RHSA-2018:0466 [No Types Assigned]

https://access.redhat.com/errata/RHSA-2018:0268 [No Types Assigned]

https://access.redhat.com/errata/RHSA-2018:0269 [No Types Assigned]

https://access.redhat.com/errata/RHSA-2018:0270 [No Types Assigned]

https://access.redhat.com/errata/RHSA-2018:0271 [No Types Assigned]

https://access.redhat.com/errata/RHSA-2018:0275 [No Types Assigned]

https://lists.debian.org/debian-lts-announce/2017/11/msg00009.html [No Types Assigned]

http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html [No Types Assigned]

https://security.netapp.com/advisory/ntap-20180117-0002/ [No Types Assigned]

https://access.redhat.com/errata/RHSA-2017:3080 [No Types Assigned]

https://access.redhat.com/errata/RHSA-2017:3081 [No Types Assigned]

https://access.redhat.com/errata/RHSA-2017:3113 [No Types Assigned]

https://access.redhat.com/errata/RHSA-2017:3114 [No Types Assigned]

https://security.netapp.com/advisory/ntap-20171018-0002/ [No Types Assigned]

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

CWE-434

OR
     *cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.2:beta:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.4:beta:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.5:beta:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.13:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.15:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.17:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.18:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.23:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.24:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.25:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.26:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.27:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.28:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.29:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.30:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.31:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.32:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.33:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.34:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.35:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:7.0.36:*:*:*:*:*:*:*
     *cpe

http://www.securityfocus.com/bid/100954 No Types Assigned

http://www.securityfocus.com/bid/100954 Third Party Advisory, VDB Entry

http://www.securitytracker.com/id/1039552 No Types Assigned

http://www.securitytracker.com/id/1039552 Third Party Advisory, VDB Entry

https://lists.apache.org/thread.html/3fd341a604c4e9eab39e7eaabbbac39c30101a022acc11dd09d7ebcb@%3Cannounce.tomcat.apache.org%3E No Types Assigned

https://lists.apache.org/thread.html/3fd341a604c4e9eab39e7eaabbbac39c30101a022acc11dd09d7ebcb@%3Cannounce.tomcat.apache.org%3E Mailing List, Vendor Advisory

https://www.exploit-db.com/exploits/42966/ No Types Assigned

https://www.exploit-db.com/exploits/42966/ Exploit, Third Party Advisory, VDB Entry

https://www.exploit-db.com/exploits/43008/ No Types Assigned

https://www.exploit-db.com/exploits/43008/ Exploit, Third Party Advisory, VDB Entry

https://www.exploit-db.com/exploits/43008/ [No Types Assigned]

http://www.securitytracker.com/id/1039552 [No Types Assigned]

https://www.exploit-db.com/exploits/42966/ [No Types Assigned]

http://www.securityfocus.com/bid/100954 [No Types Assigned]