This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:apache:tomcat:8.5.32 |
| Detail | |||
|---|---|---|---|
| Vendor | Apache | First view | 2018-10-04 |
| Product | Tomcat | Last view | 2019-06-21 |
| Version | 8.5.32 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:apache:tomcat | ||
Activity : Overall
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 5 | 2019-06-21 | CVE-2019-10072 | Network | Low | None Requ... | |
| 4.3 | 2019-05-28 | CVE-2019-0221 | Network | Medium | None Requ... | |
| 9.3 | 2019-04-15 | CVE-2019-0232 | Network | Medium | None Requ... | |
| 5 | 2019-04-10 | CVE-2019-0199 | Network | Low | None Requ... | |
| 4.3 | 2018-10-04 | CVE-2018-11784 | Network | Medium | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 40% (2) | CWE-400 | Uncontrolled Resource Consumption ('Resource Exhaustion') |
| 20% (1) | CWE-601 | URL Redirection to Untrusted Site ('Open Redirect') |
| 20% (1) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 20% (1) | CWE-20 | Improper Input Validation |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | .cmd? access RuleID : 9791 - Type : SERVER-WEBAPP - Revision : 8 |
| 2014-01-10 | .bat? access RuleID : 976-community - Type : SERVER-WEBAPP - Revision : 21 |
| 2014-01-10 | .bat? access RuleID : 976 - Type : SERVER-WEBAPP - Revision : 21 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2018-11-08 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2018-1099.nasl - Type : ACT_GATHER_INFO |
| 2018-10-16 | Name : The remote Debian host is missing a security update. File : debian_DLA-1545.nasl - Type : ACT_GATHER_INFO |
| 2018-10-15 | Name : The remote Debian host is missing a security update. File : debian_DLA-1544.nasl - Type : ACT_GATHER_INFO |
