PSIRT

Apache Tomcat vulnerabilities

Summary

Multiple Remote Code Execution (RCE) vulnerabilities (CVE-2017-12615, CVE-2017-12617) are affecting Apache Tomcat.

Affected Products

The following Fortinet products are NOT affected:
FortiOS
FortiAP
FortiSwitch
FortiAnalyzer
FortiMail
FortiManager
FortiWeb
None of the products above are using Apache Tomcat.

References

http://tomcat.apache.org/security.html

IR Number	FG-IR-17-251
Date	Oct 24, 2017
Component	GUI
Severity	High
CVSSv3 Score	0
Impact	Remote Code Execution (RCE)
CVE ID	CVE-2017-12615 CVE-2017-12617
CVRF	Download

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

PSIRT

Apache Tomcat vulnerabilities

Summary

Affected Products

References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

PSIRT

Apache Tomcat vulnerabilities

Summary

Affected Products

References

Threat Intelligence
Center