FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
676ca486-9c1e-11ea-8b5e-b42e99a1b9c3	Apache Tomcat Remote Code Execution via session persistence The Apache Software Foundation reports: Under certain circumstances an attacker will be able to trigger remote code execution via deserialization of the file under their control Discovery 2020-05-12 Entry 2020-05-22 tomcat7 < 7.0.104 tomcat85 < 8.5.55 tomcat9 < 9.0.35 tomcat-devel < 10.0.0.M5 http://tomcat.apache.org/security-7.html http://tomcat.apache.org/security-8.html http://tomcat.apache.org/security-9.html http://tomcat.apache.org/security-10.html CVE-2020-9484

VuXML ID

Description

676ca486-9c1e-11ea-8b5e-b42e99a1b9c3

Apache Tomcat Remote Code Execution via session persistence

The Apache Software Foundation reports:

Under certain circumstances an attacker will be able to trigger remote code execution via deserialization of the file under their control

Discovery 2020-05-12
Entry 2020-05-22
tomcat7

< 7.0.104

tomcat85

< 8.5.55

tomcat9

< 9.0.35

tomcat-devel

< 10.0.0.M5

http://tomcat.apache.org/security-7.html
http://tomcat.apache.org/security-8.html
http://tomcat.apache.org/security-9.html
http://tomcat.apache.org/security-10.html
CVE-2020-9484