Korean
<< Back
VID 22885
Severity 40
Port 80, ...
Protocol TCP
Class WWW
Detailed Description The version of Apache Tomcat installed on the remote host is 8.0.42 and earlier. It is, therefore, affected by Denial of Service and Information Leak vulnerabilities.

* References:
http://tomcat.apache.org/security-8.html

* Platforms Affected:
Apache Tomcat Server 8.0.42 and earlier
Any operating system Any version
Recommendation Upgrade to the latest version of Apache Tomcat Server (8.0.43 or later), available from the Apache Software Foundation download site, http://tomcat.apache.org/
Related URL CVE-2017-5647,CVE-2017-5648,CVE-2017-5650 (CVE)
Related URL (SecurityFocus)
Related URL (ISS)