Endpoint Vuln Protection

Name Status Update
CVE-2018-10767libgxps: Stack-based buffer overflow in calling glib in gxps_images_guess_content_type of gcontenttype.c [fedora-all]
Add
libgxps
CVE-2018-20483wget: Information exposure in set_file_metadata function in xattr.c [fedora-all]
Add
wget
CVE-2018-20483wget: Information exposure in set_file_metadata function in xattr.c
Add
wget
CVE-2018-1000532beep: External control of file name or path via --device option
Add
beep
CVE-2018-1000532beep: External control of file name or path via --device option [fedora-all]
Add
beep
CVE-2018-20103haproxy: Infinite recursion via crafted packet allows stack exhaustion and denial of service [fedora-all]
Add
haproxy
CVE-2018-20102haproxy: Out-of-bounds read in dns.c:dns_validate_dns_response() allows for memory disclosure [fedora-all]
Add
haproxy
CVE-2018-16868gnutls: Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification [fedora-all]
Add
gnutls
CVE-2018-16866systemd: out-of-bounds read when parsing a crafted syslog message [fedora-all]
Add
systemd
CVE-2018-16864systemd: stack overflow when calling syslog from a command with long cmdline [fedora-all]
Add
systemd
CVE-2018-16865systemd: stack overflow when receiving many journald entries [fedora-all]
Add
systemd
CVE-2019-3701kernel: Missing check in net/can/gw.c:can_can_gw_rcv() allows for crash by users with CAP_NET_ADMIN [fedora-all]
Add
kernel
CVE-2019-3701kernel: Missing check in net/can/gw.c:can_can_gw_rcv() allows for crash by users with CAP_NET_ADMIN
Add
kernel
CVE-2018-17974tcpreplay: heap-based buffer over-read in dlt_en10mb_encode in plugins/dlt_en10mb/en10mb.c [epel-all]
Add
tcpreplay
CVE-2018-17582tcpreplay: heap-based buffer over-read in the get_next_packet() in send_packets.c [epel-all]
Add
tcpreplay
CVE-2018-17580tcpreplay: heap-based buffer over-read in fast_edit_packet() in file send_packets.c [epel-all]
Add
tcpreplay
CVE-2018-18408tcpreplay: use-after-free in post_args function in tcpbridge.c [fedora-all]
Add
tcpreplay
CVE-2018-18407tcpreplay: tcpreplay: heap-based buffer over-read in csum_replace4 function in incremental_checksum.h [fedora-all]
Add
tcpreplay
CVE-2018-17974tcpreplay: heap-based buffer over-read in dlt_en10mb_encode in plugins/dlt_en10mb/en10mb.c [fedora-all]
Add
tcpreplay
CVE-2018-17582tcpreplay: heap-based buffer over-read in the get_next_packet() in send_packets.c [fedora-all]
Add
tcpreplay
CVE-2018-17580tcpreplay: heap-based buffer over-read in fast_edit_packet() in file send_packets.c [fedora-all]
Add
tcpreplay
CVE-2019-3459CVE-2019-3460kernel: various flaws [fedora-all]
Add
kernel
CVE-2019-3460kernel: Heap address information leak while using L2CAP_PARSE_CONF_RSP
Add
kernel
CVE-2019-3459kernel: Heap address information leak while using L2CAP_GET_CONF_OPT
Add
kernel
CVE-2019-3498python-django: Content spoofing via URL path in default 404 page [fedora-all]
Add
python-django
CVE-2018-17480CVE-2018-17481CVE-2018-18335CVE-2018-18336CVE-2018-18337CVE-2018-18338CVE-2018-18339CVE-2018-18340CVE-2018-18341CVE-2018-18342CVE-2018-18343CVE-2018-18344CVE-2018-18345CVE-2018-18346... chromium: various flaws [fedora-all]
Add
chromium
CVE-2018-0495OpenSSL: ROHNP - Key Extraction Side Channel in Multiple Crypto Libraries [fedora-all]
Add
OpenSSL
openssl: One&Done side channel attack can recover RSA key [fedora-all]
Add
openssl
openssl: One&Done side channel attack can recover RSA key [fedora-all]
Add
openssl
CVE-2018-0734openssl: timing side channel attack in the DSA signature algorithm [fedora-all]
Add
openssl
CVE-2018-0735openssl: timing side channel attack in ECDSA signature generation [fedora-all]
Add
openssl
CVE-2018-20330libjpeg-turbo: heap-based buffer overflow in tjLoadImage [fedora-all]
Add
libjpeg-turbo
CVE-2018-19664libjpeg-turbo: heap-based buffer over-read in the put_pixel_rows function in wrbmp.c [fedora-all]
Add
libjpeg-turbo
CVE-2018-17480CVE-2018-17481CVE-2018-18335CVE-2018-18336CVE-2018-18337CVE-2018-18338CVE-2018-18339CVE-2018-18340CVE-2018-18341CVE-2018-18342CVE-2018-18343CVE-2018-18344CVE-2018-18345CVE-2018-18346... chromium: various flaws [epel-7]
Add
chromium
CVE-2018-17479chromium: chromium-browser: Use-after-free in GPU [epel-7]
Add
chromium
CVE-2018-17478chromium: chromium-browser: Out of bounds memory access in V8 [epel-7]
Add
chromium
CVE-2018-16435CVE-2018-17462CVE-2018-17463CVE-2018-17464CVE-2018-17465CVE-2018-17466CVE-2018-17467CVE-2018-17468CVE-2018-17469CVE-2018-17470CVE-2018-17471CVE-2018-17473CVE-2018-17474CVE-2018-17475... chromium: various flaws [epel-7]
Add
chromium
CVE-2018-6055chromium: chromium-browser: Insufficient policy enforcement in Catalog Service [epel-7]
Add
chromium
CVE-2018-6119chromium: chromium-browser: Spoof of contents of the Omnibox (URL bar) via a crafted HTML page [epel-7]
Add
chromium
CVE-2018-17458CVE-2018-17459chromium: various flaws [epel-7]
Add
chromium
CVE-2018-16065CVE-2018-16066CVE-2018-16067CVE-2018-16068CVE-2018-16069CVE-2018-16070CVE-2018-16071CVE-2018-16072CVE-2018-16073CVE-2018-16074CVE-2018-16075CVE-2018-16076CVE-2018-16077CVE-2018-16078... chromium: various flaws [epel-7]
Add
chromium
CVE-2018-12558perl-Email-Address: Specially crafted input could cause Denial of Service due to complex parse() method [epel-6]
Add
perl-Email-Address
CVE-2015-7686perl-Email-Address: denial of service when parsing crafted email address list [epel-all]
Add
perl-Email-Address
CVE-2018-12558perl-Email-Address: Specially crafted input could cause Denial of Service due to complex parse() method [fedora-all]
Add
perl-Email-Address
CVE-2018-16884kernel: nfs: use-after-free in svc_process_common() [fedora-all]
Add
kernel
CVE-2018-16884kernel: nfs: use-after-free in svc_process_common()
Add
kernel
CVE-2018-20685openssh: scp client improper directory name validation [fedora-all]
Add
openssh
CVE-2018-20685openssh: scp client improper directory name validation
Add
openssh
CVE-2018-1000858gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service [fedora-all]
Add
gnupg2
syslog-ng: Use-after free in affile_dw_reap resulting in a denial of service
Add
syslog-ng
syslog-ng: Use-after free in affile_dw_reap resulting in a denial of service [fedora-all]
Add
syslog-ng
CVE-2019-5882irssi: Use-after-free when hidden lines were expired from the scroll buffer
Add
irssi
CVE-2019-5882irssi: Use-after-free when hidden lines were expired from the scroll buffer [fedora-all]
Add
irssi
CVE-2018-20330libjpeg-turbo: heap-based buffer overflow in tjLoadImage
Add
libjpeg-turbo
CVE-2018-10393libvorbis: stack buffer overflow in bark_noise_hybridmp function
Add
libvorbis
CVE-2018-10392libvorbis: heap buffer overflow in mapping0_forward function
Add
libvorbis
CVE-2017-11735libvorbis: NULL pointer dereference in vorbis_block_clear function in lib/block.c
Add
libvorbis
CVE-2017-11333libvorbis: Memory exhaustion in vorbis_analysis_wrote function in lib/block.c
Add
libvorbis
CVE-2019-3498python-django: Content spoofing via URL path in default 404 page [epel-7]
Add
python-django
CVE-2018-20551poppler: reachable Object::getString assertion in AnnotRichMedia class in Annot.c
Add
poppler
CVE-2018-20481poppler: NULL pointer dereference in the XRef::getEntry in XRef.cc
Add
poppler
CVE-2018-20650poppler: reachable Object::dictLookup assertion in FileSpec class in FileSpec.cc
Add
poppler
CVE-2018-20481poppler: NULL pointer dereference in the XRef::getEntry in XRef.cc [fedora-all]
Add
poppler
CVE-2018-20650poppler: reachable Object::dictLookup assertion in FileSpec class in FileSpec.cc [fedora-all]
Add
poppler
CVE-2018-20551poppler: reachable Object::getString assertion in AnnotRichMedia class in Annot.c [fedora-all]
Add
poppler
CVE-2018-18897poppler: memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc [fedora-all]
Add
poppler
CVE-2018-20483curl: wget: Information exposure in set_file_metadata function in xattr.c [fedora-all]
Add
curl
runc: not using pivot_root allows mounting of /proc [fedora-all]
Add
runc
CVE-2018-16873CVE-2018-16874CVE-2018-16875golang: various flaws [epel-all]
Add
golang
CVE-2019-6706lua: use-after-free in lua_upvaluejoin in lapi.c resulting in denial of service
Add
lua
CVE-2019-6706lua: use-after-free in lua_upvaluejoin in lapi.c resulting in denial of service [fedora-all]
Add
lua
radvd: Use After Free in case of misconfiguration
Add
radvd
radvd: Use After Free in case of misconfiguration [fedora-all]
Add
radvd
CVE-2019-3810moodle: User full name is not escaped in the un-linked userpix page (MSA-19-0003) [epel-all]
Add
moodle
CVE-2019-3809moodle: Blind SSRF Risk in /badges/mybackpack.php (MSA-19-0002) [epel-all]
Add
moodle
CVE-2019-3808moodle: Manage groups capability is missing XSS risk flag (MSA-19-0001) [epel-all]
Add
moodle
CVE-2019-3808moodle: Manage groups capability is missing XSS risk flag (MSA-19-0001) [fedora-all]
Add
moodle
CVE-2018-16875golang: crypto/x509 allows for denial of service via crafted TLS client certificate [fedora-all]
Add
golang
CVE-2018-16874golang: "go get" vulnerable to directory traversal via malicious package [fedora-all]
Add
golang
CVE-2018-16873golang: "go get" command vulnerable to RCE via import of malicious package [fedora-all]
Add
golang
CVE-2018-16875golang: crypto/x509 allows for denial of service via crafted TLS client certificate
Add
golang
CVE-2018-16874golang: "go get" vulnerable to directory traversal via malicious package
Add
golang
CVE-2018-16873golang: "go get" command vulnerable to RCE via import of malicious package
Add
golang
CVE-2019-5719wireshark: ISAKMP dissector crash in epan/dissectors/packet-isakmp.c [fedora-all]
Add
wireshark
CVE-2019-5718wireshark: RTSE and other ASN.1 dissectors crash in epan/charsets.c [fedora-all]
Add
wireshark
CVE-2019-5717wireshark: P_MUL dissector crash in epan/dissectors/packet-p_mul.c [fedora-all]
Add
wireshark
CVE-2019-5716wireshark: 6LoWPAN dissector crash in epan/dissectors/packet-6lowpan.c [fedora-all]
Add
wireshark
CVE-2017-14992docker-latest: docker: Lack of content verification [fedora-all]
Add
docker-latest
runc: not using pivot_root allows mounting of /proc [fedora-all]
Add
runc
CVE-2018-20699docker: Memory exhaustion via large integer used with --cpuset-mems or --cpuset-cpus [fedora-all]
Add
docker
runc: not using pivot_root allows mounting of /proc [fedora-all]
Add
runc
runc: not using pivot_root allows mounting of /proc
Add
runc
CVE-2018-20699docker: Memory exhaustion via large integer used with --cpuset-mems or --cpuset-cpus [fedora-all]
Add
docker
CVE-2018-20699docker: Memory exhaustion via large integer used with --cpuset-mems or --cpuset-cpus
Add
docker
CVE-2018-18700binutils: Recursive Stack Overflow within function d_name, d_encoding, and d_local_name in cp-demangle.c [fedora-all]
Add
binutils
CVE-2017-12448CVE-2017-12449CVE-2017-12450CVE-2017-12451CVE-2017-12452CVE-2017-12453CVE-2017-12454CVE-2017-12455CVE-2017-12456CVE-2017-12457CVE-2017-12458CVE-2017-12459CVE-2017-13710CVE-2017-13716binutils: various flaws [fedora-all]
Add
binutils
CVE-2018-16880kernel: Out of bounds write in get_rx_bufs() function in drivers/vhost/net.c [fedora-all]
Add
kernel
CVE-2018-16880kernel: Out of bounds write in get_rx_bufs() function in drivers/vhost/net.c
Add
kernel
CVE-2018-18245nagios: Stored XSS via Plugin Output [fedora-all]
Add
nagios
CVE-2018-18245nagios: Stored XSS via Plugin Output [epel-all]
Add
nagios
CVE-2018-13441nagios: NULL pointer dereference in qh_help in base/query-handler.c [fedora-all]
Add
nagios
CVE-2018-13441nagios: NULL pointer dereference in qh_help in base/query-handler.c [epel-all]
Add
nagios
CVE-2018-13457nagios: NULL pointer dereference in qh_echo in base/query-handler.c [fedora-all]
Add
nagios
CVE-2018-13457nagios: NULL pointer dereference in qh_echo in base/query-handler.c [epel-all]
Add
nagios
CVE-2018-13458nagios: NULL pointer dereference in qh_core in base/query-handler.c [fedora-all]
Add
nagios
CVE-2018-13458nagios: NULL pointer dereference in qh_core in base/query-handler.c [epel-all]
Add
nagios
CVE-2018-12120nodejs: Debugger port 5858 listens on any interface by default [epel-all]
Add
nodejs
CVE-2019-7308kernel: eBPF Spectre v1 mitigation bypass [fedora-all]
Add
kernel
CVE-2019-7308kernel: eBPF Spectre v1 mitigation bypass
Add
kernel
CVE-2019-5010python: NULL pointer dereference using a specially crafted X509 certificate
Add
python
CVE-2019-5010python3: python: NULL pointer dereference using a specially crafted X509 certificate [fedora-all]
Add
python3
CVE-2019-6486golang: crypto/elliptic implementations of P-521 and P-384 elliptic curves allow for denial of service [fedora-all]
Add
golang
CVE-2019-6486golang: crypto/elliptic implementations of P-521 and P-384 elliptic curves allow for denial of service
Add
golang
CVE-2019-5010python36: python: NULL pointer dereference using a specially crafted X509 certificate [fedora-29]
Add
python36
Wireshark vulnerability wnpa-sec-2019-05
Add
Wireshark
Wireshark vulnerability wnpa-sec-2019-04
Add
Wireshark
Wireshark vulnerability wnpa-sec-2019-03
Add
Wireshark
Wireshark vulnerability wnpa-sec-2019-02
Add
Wireshark
Wireshark vulnerability wnpa-sec-2019-01
Add
Wireshark
RHSA-2019:0022: keepalived security update (Important)
Add
keepalived
RHSA-2019:0049: systemd security update (Important)
Add
systemd
RHSA-2019:0059: libvncserver security update (Important)
Add
libvncserver
RHSA-2019:0109: perl security update (Important)
Add
perl
RHSA-2019:0159: thunderbird security update (Important)
Add
firefox
RHSA-2019:0160: thunderbird security update (Important)
Add
firefox
RHSA-2019:0218: firefox security update (Critical)
Add
Firefox
RHSA-2019:0219: firefox security update (Critical)
Add
Firefox
RHSA-2019:0163: kernel security, bug fix, and enhancement update (Important)
Add
kernel
RHSA-2019:0188: kernel-rt security and bug fix update (Important)
Add
kernel
RHSA-2019:0194: bind security update (Moderate)
Add
bind
RHSA-2019:0201: systemd security update (Low)
Add
systemd
RHSA-2019:0229: ghostscript security and bug fix update (Important)
Add
ghostscript
RHSA-2019:0230: polkit security update (Important)
Add
polkit
RHSA-2019:0231: spice security update (Important)
Add
spice
RHSA-2019:0232: spice-server security update (Important)
Add
spice
RHSA-2019:0269: thunderbird security update (Important)
Add
libical
RHSA-2019:0270: thunderbird security update (Important)
Add
libical
Security vulnerabilities fixed in Thunderbird 60.4
Add
Thunderbird
Security vulnerabilities fixed in Thunderbird 60.5
Add
Thunderbird
Security vulnerabilities fixed in Firefox ESR 60.5
Add
Firefox ESR
Security vulnerabilities fixed in Firefox 65
Add
Firefox
python-django vulnerability
Add
python-django - High-level Python web development framework
nss vulnerabilities
Add
nss - Network Security Service library
systemd vulnerabilities
Add
systemd - system and service manager
webkit2gtk vulnerabilities
Add
webkit2gtk - Web content engine library for GTK+
gnupg2 vulnerability
Add
gnupg2 - GNU privacy guard - a free PGP replacement
exiv2 vulnerabilities
Add
exiv2 - EXIF/IPTC/XMP metadata manipulation tool
php-pear vulnerability
Add
php-pear - PHP Extension and Application Repository
gnome-bluetooth vulnerability
Add
gnome-bluetooth - GNOME Bluetooth tools
policykit-1 vulnerability
Add
policykit-1 - framework for managing administrative policies and privileges
libcaca vulnerabilities
Add
libcaca - text mode graphics utilities
libarchive vulnerabilities
Add
libarchive - Library to read/write archive files
haproxy vulnerabilities
Add
haproxy - fast and reliable load balancing reverse proxy
irssi vulnerability
Add
irssi - terminal based IRC client
mysql-5.7 vulnerabilities
Add
mysql-5.7 - MySQL database
ghostscript vulnerability
Add
ghostscript - PostScript and PDF interpreter
poppler vulnerabilities
Add
poppler - PDF rendering library
tiff vulnerabilities
Add
tiff - Tag Image File Format (TIFF) library
apt vulnerability
Add
apt - Advanced front-end for dpkg
thunderbird vulnerabilities
Add
thunderbird - Mozilla Open Source mail and newsgroup client
subversion vulnerability
Add
subversion - Advanced version control system
spice vulnerability
Add
spice - SPICE protocol client and server library
openjdk-8, openjdk-lts vulnerability
Add
openjdk-8 - Open Source Java implementation,openjdk-lts - Open Source Java implementation
firefox vulnerabilities
Add
firefox - Mozilla Open Source web browser
openvswitch vulnerabilities
Add
openvswitch - Ethernet virtual switch
linux-hwe vulnerabilities
Add
linux-hwe - Linux hardware enablement (HWE) kernel
linux vulnerabilities
Add
linux - Linux kernel
linux regression
Add
linux - Linux kernel
libvncserver vulnerabilities
Add
libvncserver - vnc server library
avahi vulnerabilities
Add
avahi - Avahi IPv4LL network address configuration daemon
linux vulnerabilities
Add
linux - Linux kernel
Security Vulnerability CVE-2018-0734 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2018-11212 in Oracle JRE
Add
Java JRE
Security Vulnerability CVE-2018-11212 in Oracle JDK
Add
Java JDK
Security Vulnerability CVE-2019-2420 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2422 in Oracle JRE
Add
Java JRE
Security Vulnerability CVE-2019-2422 in Oracle JDK
Add
Java JDK
Security Vulnerability CVE-2019-2426 in Oracle JRE
Add
Java JRE
Security Vulnerability CVE-2019-2426 in Oracle JDK
Add
Java JDK
Security Vulnerability CVE-2019-2434 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2436 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2449 in Oracle JRE
Add
Java JRE
Security Vulnerability CVE-2019-2449 in Oracle JDK
Add
Java JDK
Security Vulnerability CVE-2019-2455 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2481 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2482 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2486 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2494 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2495 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2502 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2503 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2507 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2510 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2513 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2528 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2529 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2530 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2531 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2532 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2533 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2534 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2535 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2536 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2537 in MySQL
Add
MySQL Server
Security Vulnerability CVE-2019-2539 in MySQL
Add
MySQL Server
Security patch #77369 available for PHP
Add
PHP
Security patch #77394 available for PHP
Add
PHP
Security patch #77385 available for PHP
Add
PHP
Security patch #77382 available for PHP
Add
PHP
Security patch #77381 available for PHP
Add
PHP
Security patch #77418 available for PHP
Add
PHP
Security patch #77380 available for PHP
Add
PHP
Security patch #77371 available for PHP
Add
PHP
Security patch #77370 available for PHP
Add
PHP
Security patch #77269 available for PHP
Add
PHP
Security patch #77247 available for PHP
Add
PHP
Security patch #77242 available for PHP
Add
PHP
Security patch #77270 available for PHP
Add
PHP
Security Vulnerability CVE-2018-6160 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2018-20070 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2018-20066 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2017-15428 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2018-16085 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2018-20071 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2017-15401 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2018-16072 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2018-17457 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2016-10403 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2018-20068 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2018-16087 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2018-20065 for Google Chrome
Add
Google Chrome
Security Vulnerability CVE-2018-20067 for Google Chrome
Add
Google Chrome
Apache Struts security advisory S2-001
Mod
Apache Struts
Apache Struts security advisory S2-002
Mod
Apache Struts
Apache Struts security advisory S2-004
Mod
Apache Struts
Apache Struts security advisory S2-005
Mod
Apache Struts
Apache Struts security advisory S2-006
Mod
Apache Struts
Apache Struts security advisory S2-007
Mod
Apache Struts
Apache Struts security advisory S2-008
Mod
Apache Struts
Apache Struts security advisory S2-009
Mod
Apache Struts
Apache Struts security advisory S2-012
Mod
Apache Struts
Apache Struts security advisory S2-013
Mod
Apache Struts
Apache Struts security advisory S2-014
Mod
Apache Struts
Apache Struts security advisory S2-015
Mod
Apache Struts
Apache Struts security advisory S2-016
Mod
Apache Struts
Apache Struts security advisory S2-017
Mod
Apache Struts
Apache Struts security advisory S2-018
Mod
Apache Struts
Apache Struts security advisory S2-019
Mod
Apache Struts
Apache Struts security advisory S2-020
Mod
Apache Struts
Apache Struts security advisory S2-021
Mod
Apache Struts
Apache Struts security advisory S2-022
Mod
Apache Struts
Apache Struts security advisory S2-023
Mod
Apache Struts
Apache Struts security advisory S2-024
Mod
Apache Struts
Apache Struts security advisory S2-028
Mod
Apache Struts
Apache Struts security advisory S2-029
Mod
Apache Struts
Apache Struts security advisory S2-030
Mod
Apache Struts
Apache Struts security advisory S2-031
Mod
Apache Struts
Apache Struts security advisory S2-032
Mod
Apache Struts
Apache Struts security advisory S2-033
Mod
Apache Struts
Apache Struts security advisory S2-034
Mod
Apache Struts
Apache Struts security advisory S2-035
Mod
Apache Struts
Apache Struts security advisory S2-037
Mod
Apache Struts
Apache Struts security advisory S2-038
Mod
Apache Struts
Apache Struts security advisory S2-039
Mod
Apache Struts
Apache Struts security advisory S2-040
Mod
Apache Struts
Apache Struts security advisory S2-041
Mod
Apache Struts
Apache Struts security advisory S2-043
Mod
Apache Struts
Apache Struts security advisory S2-045
Mod
Apache Struts
Apache Struts security advisory S2-046
Mod
Apache Struts
Apache Struts security advisory S2-047
Mod
Apache Struts
Apache Struts security advisory S2-048
Mod
Apache Struts
Apache Struts security advisory S2-049
Mod
Apache Struts
Apache Struts security advisory S2-055
Mod
Apache Struts
Apache Httpd - low:Use-after-free when using <Limit > with an unrecognized method in .htaccess ("OptionsBleed")(CVE-2017-9798)
Mod
Apache Httpd
Apache Httpd - important:Uninitialized memory reflection in mod_auth_digest(CVE-2017-9788)
Mod
Apache Httpd
Apache Httpd - important:ap_get_basic_auth_pw() Authentication Bypass(CVE-2017-3167)
Mod
Apache Httpd
Apache Httpd - important:mod_ssl Null Pointer Dereference(CVE-2017-3169)
Mod
Apache Httpd
Apache Httpd - important:ap_find_token() Buffer Overread(CVE-2017-7668)
Mod
Apache Httpd
Apache Httpd - important:mod_mime Buffer Overread(CVE-2017-7679)
Mod
Apache Httpd
Apache Httpd - important:Apache HTTP Request Parsing Whitespace Defects(CVE-2016-8743)
Mod
Apache Httpd
Apache Httpd - n/a:HTTP_PROXY environment variable "httpoxy" mitigation(CVE-2016-5387)
Mod
Apache Httpd
Apache Httpd - low:HTTP request smuggling attack against chunked request parser(CVE-2015-3183)
Mod
Apache Httpd
Apache Httpd - important:mod_cgid denial of service(CVE-2014-0231)
Mod
Apache Httpd
Apache Httpd - low:HTTP Trailers processing bypass(CVE-2013-5704)
Mod
Apache Httpd
Apache Httpd - moderate:mod_deflate denial of service(CVE-2014-0118)
Mod
Apache Httpd
Apache Httpd - moderate:mod_status buffer overflow(CVE-2014-0226)
Mod
Apache Httpd
Apache Httpd - low:mod_log_config crash(CVE-2014-0098)
Mod
Apache Httpd
Apache Httpd - moderate:mod_dav crash(CVE-2013-6438)
Mod
Apache Httpd
Apache Httpd - low:mod_rewrite log escape filtering(CVE-2013-1862)
Mod
Apache Httpd
Apache Httpd - moderate:mod_dav crash(CVE-2013-1896)
Mod
Apache Httpd
Apache Httpd - low:XSS due to unescaped hostnames(CVE-2012-3499)
Mod
Apache Httpd
Apache Httpd - moderate:XSS in mod_proxy_balancer(CVE-2012-4558)
Mod
Apache Httpd
Apache Httpd - low:XSS in mod_negotiation when untrusted uploads are supported(CVE-2012-2687)
Mod
Apache Httpd
Apache Httpd - low:insecure LD_LIBRARY_PATH handling(CVE-2012-0883)
Mod
Apache Httpd
Apache Httpd - low:mod_proxy_ajp remote DoS(CVE-2012-4557)
Mod
Apache Httpd
Apache Httpd - low:mod_setenvif .htaccess privilege escalation(CVE-2011-3607)
Mod
Apache Httpd
Apache Httpd - low:mod_log_config crash(CVE-2012-0021)
Mod
Apache Httpd
Apache Httpd - low:scoreboard parent DoS(CVE-2012-0031)
Mod
Apache Httpd
Apache Httpd - moderate:mod_proxy reverse proxy exposure(CVE-2011-4317)
Mod
Apache Httpd
Apache Httpd - moderate:error responses can expose cookies(CVE-2012-0053)
Mod
Apache Httpd
Apache Httpd - moderate:mod_proxy reverse proxy exposure(CVE-2011-3368)
Mod
Apache Httpd
Apache Httpd - moderate:mod_proxy_ajp remote DoS(CVE-2011-3348)
Mod
Apache Httpd
Apache Httpd - important:Range header remote DoS(CVE-2011-3192)
Mod
Apache Httpd
Apache Httpd - moderate:apr_fnmatch flaw leads to mod_autoindex remote DoS(CVE-2011-0419)
Mod
Apache Httpd
Apache Httpd - low:expat DoS(CVE-2009-3720)
Mod
Apache Httpd
Apache Httpd - low:expat DoS(CVE-2009-3560)
Mod
Apache Httpd
Apache Httpd - low:apr_bridage_split_line DoS(CVE-2010-1623)
Mod
Apache Httpd
Apache Httpd - important:Timeout detection flaw (mod_proxy_http)(CVE-2010-2068)
Mod
Apache Httpd
Apache Httpd - low:mod_cache and mod_dav DoS(CVE-2010-1452)
Mod
Apache Httpd
Apache Httpd - important:mod_isapi module unload flaw(CVE-2010-0425)
Mod
Apache Httpd
Apache Httpd - low:Subrequest handling of request headers (mod_headers)(CVE-2010-0434)
Mod
Apache Httpd
Apache Httpd - moderate:mod_proxy_ajp DoS(CVE-2010-0408)
Mod
Apache Httpd
Apache Httpd - low:mod_proxy_ftp DoS(CVE-2009-3094)
Mod
Apache Httpd
Apache Httpd - low:mod_proxy_ftp FTP command injection(CVE-2009-3095)
Mod
Apache Httpd
Apache Httpd - moderate:Solaris pollset DoS(CVE-2009-2699)
Mod
Apache Httpd
Apache Httpd - low:APR apr_palloc heap overflow(CVE-2009-2412)
Mod
Apache Httpd
Apache Httpd - important:mod_proxy reverse proxy DoS(CVE-2009-1890)
Mod
Apache Httpd
Apache Httpd - important:mod_proxy_ajp information disclosure(CVE-2009-1191)
Mod
Apache Httpd
Apache Httpd - low:mod_deflate DoS(CVE-2009-1891)
Mod
Apache Httpd
Apache Httpd - low:AllowOverride Options handling bypass(CVE-2009-1195)
Mod
Apache Httpd
Apache Httpd - low:CRLF injection in mod_negotiation when untrusted uploads are supported(CVE-2008-0456)
Mod
Apache Httpd
Apache Httpd - moderate:APR-util off-by-one overflow(CVE-2009-1956)
Mod
Apache Httpd
Apache Httpd - moderate:APR-util XML DoS(CVE-2009-1955)
Mod
Apache Httpd
Apache Httpd - moderate:APR-util heap underwrite(CVE-2009-0023)
Mod
Apache Httpd
Apache Httpd - important:Timeout detection flaw (mod_proxy_http)(CVE-2010-2791)
Mod
Apache Httpd
Apache Httpd - low:mod_proxy_ftp globbing XSS(CVE-2008-2939)
Mod
Apache Httpd
Apache Httpd - low:mod_proxy_balancer CSRF(CVE-2007-6420)
Mod
Apache Httpd
Apache Httpd - moderate:mod_proxy_http DoS(CVE-2008-2364)
Mod
Apache Httpd
Apache Httpd - low:mod_proxy_ftp UTF-7 XSS(CVE-2008-0005)
Mod
Apache Httpd
Apache Httpd - low:mod_proxy_balancer DoS(CVE-2007-6422)
Mod
Apache Httpd
Apache Httpd - low:mod_proxy_balancer XSS(CVE-2007-6421)
Mod
Apache Httpd
Apache Httpd - moderate:mod_status XSS(CVE-2007-6388)
Mod
Apache Httpd
Apache Httpd - moderate:mod_imagemap XSS(CVE-2007-5000)
Mod
Apache Httpd
Apache Httpd - moderate:mod_proxy crash(CVE-2007-3847)
Mod
Apache Httpd
Apache Httpd - moderate:mod_status cross-site scripting(CVE-2006-5752)
Mod
Apache Httpd
Apache Httpd - moderate:Signals to arbitrary processes(CVE-2007-3304)
Mod
Apache Httpd
Apache Httpd - moderate:mod_cache information leak(CVE-2007-1862)
Mod
Apache Httpd
Apache Httpd - moderate:mod_cache proxy DoS(CVE-2007-1863)
Mod
Apache Httpd
Apache Httpd - important:mod_rewrite off-by-one error(CVE-2006-3747)
Mod
Apache Httpd
Apache Httpd - low:mod_ssl access control DoS(CVE-2005-3357)
Mod
Apache Httpd
Apache Httpd - moderate:mod_imap Referer Cross-Site Scripting(CVE-2005-3352)
Mod
Apache Httpd
Apache Httpd - important:Read after free in mod_http2(CVE-2017-9789)
Mod
Apache Httpd
Apache Httpd - important:mod_http2 Null Pointer Dereference(CVE-2017-7659)
Mod
Apache Httpd
Apache Httpd - low:HTTP/2 CONTINUATION denial of service(CVE-2016-8740)
Mod
Apache Httpd
Apache Httpd - low:DoS vulnerability in mod_auth_digest(CVE-2016-2161)
Mod
Apache Httpd
Apache Httpd - low:Padding Oracle in Apache mod_session_crypto(CVE-2016-0736)
Mod
Apache Httpd
Apache Httpd - important:TLS/SSL X.509 client certificate auth bypass with HTTP/2(CVE-2016-4979)
Mod
Apache Httpd
Apache Httpd - low:mod_http2: denial of service by thread starvation(CVE-2016-1546)
Mod
Apache Httpd
Apache Httpd - low:mod_lua: Crash in websockets PING handling(CVE-2015-0228)
Mod
Apache Httpd
Apache Httpd - low:Crash in ErrorDocument 400 handling(CVE-2015-0253)
Mod
Apache Httpd
Apache Httpd - low:ap_some_auth_required API unusable(CVE-2015-3185)
Mod
Apache Httpd
Apache Httpd - low:mod_lua multiple "Require" directive handling is broken(CVE-2014-8109)
Mod
Apache Httpd
Apache Httpd - low:mod_proxy_fcgi out-of-bounds memory read(CVE-2014-3583)
Mod
Apache Httpd
Apache Httpd - low:mod_cache crash with empty Content-Type header(CVE-2014-3581)
Mod
Apache Httpd
Apache Httpd - important:WinNT MPM denial of service(CVE-2014-3523)
Mod
Apache Httpd
Apache Httpd - moderate:mod_proxy denial of service(CVE-2014-0117)
Mod
Apache Httpd
Apache Httpd - low:mod_cache crash(CVE-2013-4352)
Mod
Apache Httpd
Apache Httpd - moderate:mod_session_dbd session fixation flaw(CVE-2013-2249)
Mod
Apache Httpd
Apache Httpd - important:Response mixup when using mod_proxy_ajp or mod_proxy_http(CVE-2012-3502)
Mod
Apache Httpd
Apache Tomcat - Low: Incorrectly documented CGI search algorithm CVE-2017-15706
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Code Execution CVE-2017-12617
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2017-12616
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Code Execution CVE-2017-12615
Mod
Apache Tomcat
Apache Tomcat - Important: Security Constraint Bypass CVE-2017-5664
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2017-5647
Mod
Apache Tomcat
Apache Tomcat - Low: Information Disclosure CVE-2017-5648
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2016-8745
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Code Execution CVE-2016-8735
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2016-6816
Mod
Apache Tomcat
Apache Tomcat - Moderate: Denial of Service CVE-2016-3092
Mod
Apache Tomcat
Apache Tomcat - Low: Directory disclosure CVE-2015-5345
Mod
Apache Tomcat
Apache Tomcat - Moderate: CSRF token leak CVE-2015-5351
Mod
Apache Tomcat
Apache Tomcat - Low: Security Manager bypass CVE-2016-0706
Mod
Apache Tomcat
Apache Tomcat - Moderate: Security Manager bypass CVE-2016-0714
Mod
Apache Tomcat
Apache Tomcat - Moderate: Security Manager bypass CVE-2016-0763
Mod
Apache Tomcat
Apache Tomcat - Low: Information Disclosure CVE-2014-0119
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of Service CVE-2014-0075
Mod
Apache Tomcat
Apache Tomcat - Important: Information disclosure CVE-2014-0096
Mod
Apache Tomcat
Apache Tomcat - Important: Information disclosure CVE-2014-0099
Mod
Apache Tomcat
Apache Tomcat - Important: Information disclosure CVE-2013-4286
Mod
Apache Tomcat
Apache Tomcat - Moderate: Information disclosure CVE-2013-2071
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Code Execution CVE-2013-4444
Mod
Apache Tomcat
Apache Tomcat - Important: Bypass of CSRF prevention filter CVE-2012-4431
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of service CVE-2012-3544
Mod
Apache Tomcat
Apache Tomcat - Moderate: DIGEST authentication weakness CVE-2012-3439
Mod
Apache Tomcat
Apache Tomcat - Important: Bypass of security constraints CVE-2012-3546
Mod
Apache Tomcat
Apache Tomcat - Important: Information disclosure CVE-2011-3375
Mod
Apache Tomcat
Apache Tomcat - Low: Privilege Escalation CVE-2011-3376
Mod
Apache Tomcat
Apache Tomcat - Important: Information disclosure CVE-2011-2729
Mod
Apache Tomcat
Apache Tomcat - Low: Information disclosure CVE-2011-2526
Mod
Apache Tomcat
Apache Tomcat - Low: Information disclosure CVE-2011-2204
Mod
Apache Tomcat
Apache Tomcat - Low: Information disclosure CVE-2011-2481
Mod
Apache Tomcat
Apache Tomcat - Important: Security constraint bypass CVE-2011-1088
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Denial Of Service CVE-2011-0534
Mod
Apache Tomcat
Apache Tomcat - Low: Cross-site scripting CVE-2011-0013
Mod
Apache Tomcat
Apache Tomcat - Low: Cross-site scripting CVE-2010-4172
Mod
Apache Tomcat
Apache Tomcat - Low: SecurityManager file permission bypass CVE-2010-3718
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Denial Of Service and Information Disclosure Vulnerability CVE-2010-2227
Mod
Apache Tomcat
Apache Tomcat - Low: Incorrectly documented CGI search algorithm CVE-2017-15706
Mod
Apache Tomcat
Apache Tomcat - Low: Incorrectly documented CGI search algorithm CVE-2017-15706
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Code Execution CVE-2017-12617
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Code Execution CVE-2017-12617
Mod
Apache Tomcat
Apache Tomcat - Moderate: Cache Poisoning CVE-2017-7674
Mod
Apache Tomcat
Apache Tomcat - Important: Security Constraint Bypass CVE-2017-7675
Mod
Apache Tomcat
Apache Tomcat - Moderate: Cache Poisoning CVE-2017-7674
Mod
Apache Tomcat
Apache Tomcat - Important: Security Constraint Bypass CVE-2017-5664
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2017-5647
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2017-5651
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of Service CVE-2017-5650
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2017-5647
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2016-8745
Mod
Apache Tomcat
Apache Tomcat - Moderate: Information Disclosure CVE-2016-8747
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2016-8745
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Code Execution CVE-2016-8735
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2016-6816
Mod
Apache Tomcat
Apache Tomcat - Low: Unrestricted Access to Global Resources CVE-2016-6797
Mod
Apache Tomcat
Apache Tomcat - Low: Security Manager Bypass CVE-2016-6796
Mod
Apache Tomcat
Apache Tomcat - Low: System Property Disclosure CVE-2016-6794
Mod
Apache Tomcat
Apache Tomcat - Low: Security Manager Bypass CVE-2016-5018
Mod
Apache Tomcat
Apache Tomcat - Low: Timing Attack CVE-2016-0762
Mod
Apache Tomcat
Apache Tomcat - Moderate: Security Manager bypass CVE-2014-7810
Mod
Apache Tomcat
Apache Tomcat - Important: Request Smuggling CVE-2014-0227
Mod
Apache Tomcat
Apache Tomcat - Low: Denial of Service CVE-2014-0230
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of Service CVE-2014-0075
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of Service CVE-2014-0095
Mod
Apache Tomcat
Apache Tomcat - Important: Information disclosure CVE-2014-0096
Mod
Apache Tomcat
Apache Tomcat - Important: Information disclosure CVE-2014-0099
Mod
Apache Tomcat
Apache Tomcat - Low: Incorrectly documented CGI search algorithm CVE-2017-15706
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Code Execution CVE-2017-12617
Mod
Apache Tomcat
Apache Tomcat - Important: Security Constraint Bypass CVE-2017-7675
Mod
Apache Tomcat
Apache Tomcat - Moderate: Cache Poisoning CVE-2017-7674
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2017-5651
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of Service CVE-2017-5650
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2017-5647
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2016-8745
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Code Execution CVE-2016-8735
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of Service CVE-2016-6817
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2016-6816
Mod
Apache Tomcat
Apache Tomcat - Moderate: Security Manager bypass CVE-2016-0763
Mod
Apache Tomcat
Apache Tomcat - Low: Directory disclosure CVE-2015-5345
Mod
Apache Tomcat
Apache Tomcat - Low: Session Fixation CVE-2015-5346
Mod
Apache Tomcat
Apache Tomcat - Moderate: CSRF token leak CVE-2015-5351
Mod
Apache Tomcat
Apache Tomcat - Low: Security Manager bypass CVE-2016-0706
Mod
Apache Tomcat
Apache Tomcat - Moderate: Security Manager bypass CVE-2016-0714
Mod
Apache Tomcat
Apache Tomcat - High: Security constraint annotations applied too late CVE-2018-1305
Mod
Apache Tomcat
Apache Tomcat - High: Security constraints mapped to context root are ignored CVE-2018-1304
Mod
Apache Tomcat
Apache Tomcat - High: Security constraints mapped to context root are ignored CVE-2018-1304
Mod
Apache Tomcat
Apache Tomcat - High: Security constraint annotations applied too late CVE-2018-1305
Mod
Apache Tomcat
Apache Tomcat - High: Security constraints mapped to context root are ignored CVE-2018-1304
Mod
Apache Tomcat
Apache Struts security advisory S2-003
Mod
Apache Struts
Apache Struts security advisory S2-010
Mod
Apache Struts
Apache Struts security advisory S2-011
Mod
Apache Struts
Apache Struts security advisory S2-025
Mod
Apache Struts
Apache Struts security advisory S2-026
Mod
Apache Struts
Apache Struts security advisory S2-027
Mod
Apache Struts
Apache Struts security advisory S2-036
Mod
Apache Struts
Apache Struts security advisory S2-042
Mod
Apache Struts
Apache Struts security advisory S2-044
Mod
Apache Struts
Apache Struts security advisory S2-050
Mod
Apache Struts
Apache Struts security advisory S2-051
Mod
Apache Struts
Apache Struts security advisory S2-052
Mod
Apache Struts
Apache Struts security advisory S2-053
Mod
Apache Struts
Apache Struts security advisory S2-054
Mod
Apache Struts
Apache Struts security advisory S2-056
Mod
Apache Struts
Apache Tomcat - Low: host name verification missing in WebSocket client CVE-2018-8034
Mod
Apache Tomcat
Apache Tomcat - Important: A bug in the UTF-8 decoder can lead to DoS CVE-2018-1336
Mod
Apache Tomcat
Apache Tomcat - Important: Security constraint annotations applied too late CVE-2018-1305
Mod
Apache Tomcat
Apache Tomcat - Low: host name verification missing in WebSocket client CVE-2018-8034
Mod
Apache Tomcat
Apache Tomcat - Important: A bug in the UTF-8 decoder can lead to DoS CVE-2018-1336
Mod
Apache Tomcat
Apache Tomcat - Low: host name verification missing in WebSocket client CVE-2018-8034
Mod
Apache Tomcat
Apache Tomcat - Important: Due to a mishandling of close in NIO/NIO2 connectors user sessions can get mixed up CVE-2018-8037
Mod
Apache Tomcat
Apache Tomcat - Important: A bug in the UTF-8 decoder can lead to DoS CVE-2018-1336
Mod
Apache Tomcat
Apache Struts security advisory S2-057
Mod
Apache Struts
Apache Tomcat - Moderate: Open Redirect CVE-2018-11784
Mod
Apache Tomcat
Apache Tomcat - Moderate: Open Redirect CVE-2018-11784
Mod
Apache Tomcat
Apache Tomcat - Important: A bug in the UTF-8 decoder can lead to DoS CVE-2018-1336
Mod
Apache Tomcat
Apache Tomcat - Moderate: Open Redirect CVE-2018-11784
Mod
Apache Tomcat
Apache Tomcat - Moderate: Cache Poisoning CVE-2017-7674
Mod
Apache Tomcat
Apache Tomcat - Low: Unrestricted Access to Global Resources CVE-2016-6797
Mod
Apache Tomcat
Apache Tomcat - Low: Security Manager Bypass CVE-2016-6796
Mod
Apache Tomcat
Apache Tomcat - Low: System Property Disclosure CVE-2016-6794
Mod
Apache Tomcat
Apache Tomcat - Low: Security Manager Bypass CVE-2016-5018
Mod
Apache Tomcat
Apache Tomcat - Low: Timing Attack CVE-2016-0762
Mod
Apache Tomcat
Apache Tomcat - Low: Session Fixation CVE-2015-5346
Mod
Apache Tomcat
Apache Tomcat - Low: Limited directory traversal CVE-2015-5174
Mod
Apache Tomcat
Apache Tomcat - Moderate: Security Manager bypass CVE-2014-7810
Mod
Apache Tomcat
Apache Tomcat - Important: Request Smuggling CVE-2014-0227
Mod
Apache Tomcat
Apache Tomcat - Low: Denial of Service CVE-2014-0230
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of Service CVE-2014-0050
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of service CVE-2013-4322
Mod
Apache Tomcat
Apache Tomcat - Low: Information disclosure CVE-2013-4590
Mod
Apache Tomcat
Apache Tomcat - Important: Session fixation CVE-2013-2067
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of service CVE-2012-2733
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of service CVE-2012-4534
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of service CVE-2012-0022
Mod
Apache Tomcat
Apache Tomcat - Important: Security constraint bypass CVE-2011-1582
Mod
Apache Tomcat
Apache Tomcat - Important: Information disclosure CVE-2011-1475
Mod
Apache Tomcat
Apache Tomcat - Moderate: Multiple weaknesses in HTTP DIGEST authentication CVE-2011-1184
Mod
Apache Tomcat
Apache Tomcat - Important: Security constraint bypass CVE-2011-1183
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2018-8037
Mod
Apache Tomcat
Apache Tomcat - Low: host name verification missing in WebSocket client CVE-2018-8034
Mod
Apache Tomcat
Apache Tomcat - Important: Security constraint annotations applied too late CVE-2018-1305
Mod
Apache Tomcat
Apache Tomcat - Important: Security constraints mapped to context root are ignored CVE-2018-1304
Mod
Apache Tomcat
Apache Tomcat - Important: Security Constraint Bypass CVE-2017-5664
Mod
Apache Tomcat
Apache Tomcat - Low: Information Disclosure CVE-2017-5648
Mod
Apache Tomcat
Apache Tomcat - Low: Information Disclosure CVE-2017-5648
Mod
Apache Tomcat
Apache Tomcat - Important: Remote Code Execution CVE-2016-8735
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of Service CVE-2016-6817
Mod
Apache Tomcat
Apache Tomcat - Important: Information Disclosure CVE-2016-6816
Mod
Apache Tomcat
Apache Tomcat - Moderate: Denial of Service CVE-2016-3092
Mod
Apache Tomcat
Apache Tomcat - Low: Session Fixation CVE-2015-5346
Mod
Apache Tomcat
Apache Tomcat - Moderate: CSRF token leak CVE-2015-5351
Mod
Apache Tomcat
Apache Tomcat - Low: Security Manager bypass CVE-2016-0706
Mod
Apache Tomcat
Apache Tomcat - Moderate: Security Manager bypass CVE-2016-0714
Mod
Apache Tomcat
Apache Tomcat - Moderate: Security Manager bypass CVE-2016-0763
Mod
Apache Tomcat
Apache Tomcat - Low: Directory disclosure CVE-2015-5345
Mod
Apache Tomcat
Apache Tomcat - Low: Limited directory traversal CVE-2015-5174
Mod
Apache Tomcat
Apache Tomcat - Low: Information Disclosure CVE-2014-0119
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of Service CVE-2014-0050
Mod
Apache Tomcat
Apache Tomcat - Important: Denial of service CVE-2013-4322
Mod
Apache Tomcat
Apache Tomcat - Low: Information disclosure CVE-2013-4590
Mod
Apache Tomcat
Apache Tomcat - Important: Information disclosure CVE-2013-4286
Mod
Apache Tomcat
Apache Tomcat - Important: Security Constraint Bypass CVE-2017-5664
Mod
Apache Tomcat