tomcat7 vulnerabilities

Known vulnerabilities in the tomcat7 package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
H CVE-2021-25329	*
L Information Exposure	*
H Deserialization of Untrusted Data	*
M HTTP Request Smuggling	*
M HTTP Request Smuggling	*
C Improper Input Validation	*
H Insufficiently Protected Credentials	*
H Session Fixation	*
M Cross-site Scripting (XSS)	*
M Open Redirect	<7.0.72-3
H Loop with Unreachable Exit Condition ('Infinite Loop')	<7.0.72-3
H Improper Certificate Validation	<7.0.72-3
C Insecure Default Initialization of Resource	<7.0.72-3
M CVE-2018-1304	<7.0.72-3
M CVE-2018-1305	<7.0.72-3
H Information Exposure	<7.0.72-3
L Security Features	<7.0.72-1
M Insufficient Verification of Data Authenticity	<7.0.72-3
L Improper Access Control	<7.0.72-1
H Error Handling	<7.0.72-3
L Security Features	<7.0.72-1
L Information Exposure	<7.0.72-1
L Access Restriction Bypass	<7.0.72-1
H Improper Handling of Exceptional Conditions	<7.0.72-3
H Information Exposure	<7.0.72-3
C Exposure of Resource to Wrong Sphere	<7.0.72-3
C Improper Access Control	<7.0.72-3
H Access Restriction Bypass	<7.0.72-3
H Link Following	<7.0.72-3
H Improper Input Validation	<7.0.72-3
H Loop with Unreachable Exit Condition ('Infinite Loop')	<7.0.72-3
H Improper Input Validation	<7.0.70-3
H Improper Access Control	<7.0.72-1
H Improper Input Validation	<7.0.70-1
H Access Restriction Bypass	<7.0.68-1
M Information Exposure	<7.0.68-1
M Access Restriction Bypass	<7.0.68-1
M Directory Traversal	<7.0.68-1
H CVE-2015-5346	<7.0.68-1
H Cross-site Request Forgery (CSRF)	<7.0.68-1
M Directory Traversal	<7.0.68-1
M Improper Access Control	<7.0.61-1
H Resource Management Errors	<7.0.55-1
M Improper Data Handling	<7.0.55-1
M Arbitrary Code Injection	<7.0.40-1
M Access Restriction Bypass	<7.0.53-1
M Numeric Errors	<7.0.53-1
M Numeric Errors	<7.0.53-1
M Access Restriction Bypass	<7.0.54-1
H Access Restriction Bypass	<7.0.52-1
M Improper Input Validation	<7.0.47
M Improper Input Validation	<7.0.50
L Information Exposure	<7.0.50
M Improper Input Validation	<7.0.30
M Improper Authentication	<7.0.33
L Information Exposure	<7.0.40-1
M Access Restriction Bypass	<7.0.28-4
L Resource Management Errors	<7.0.28-1
M Access Restriction Bypass	<7.0.28-4
L CVE-2012-5568	*
M Access Restriction Bypass	<7.0.28-3+nmu1
M Improper Authentication	<7.0.28-3+nmu1
M Improper Authentication	<7.0.28-3+nmu1
M Improper Input Validation	<7.0.28-1
M Information Exposure	<7.0.22-1
M Numeric Errors	<7.0.23-1
M Improper Authentication	<7.0.12
M Access Restriction Bypass	<7.0.12
M Access Restriction Bypass	<7.0.12
M Cryptographic Issues	<7.0.12
M Resource Management Errors	<7.0.26-1
M Access Restriction Bypass	<7.0.22-1
H Access Restriction Bypass	<7.0.21-1
M CVE-2011-2481	<7.0.19-1
M Improper Input Validation	<7.0.19-1
L Information Exposure	<7.0.16-3

Vulnerability

Vulnerable Version

CVE-2021-25329