- Home
- CVEs with nessus.description==It was discovered that Tomcat incorrectly handled certain pipelined
requests when sendfile was used. A remote attacker could use this
issue to obtain wrong responses possibly containing sensitive
information. (CVE-2017-5647)
It was discovered that Tomcat incorrectly used the appropriate facade
object. A malicious application could possibly use this to bypass
Security Manager restrictions. (CVE-2017-5648)
It was discovered that Tomcat incorrectly handled error pages. A
remote attacker could possibly use this issue to replace or remove the
custom error page. (CVE-2017-5664)
It was discovered that Tomcat incorrectly handled the CORS filter. A
remote attacker could possibly use this issue to perform cache
poisoning. (CVE-2017-7674).
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top