CVE-2017-12617
- EPSS 94.38%
- Veröffentlicht 04.10.2017 01:29:02
- Zuletzt bearbeitet 21.04.2026 17:03:52
When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.0 to 7.0.81 with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default servlet to false) it was possible to upload ...
CVE-2017-10039
- EPSS 0.72%
- Veröffentlicht 08.08.2017 15:29:01
- Zuletzt bearbeitet 13.05.2026 00:24:29
Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent: Web Client). Supported versions that are affected are 9.3.5 and 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network a...
CVE-2016-8735
- EPSS 93.81%
- Veröffentlicht 06.04.2017 21:59:00
- Zuletzt bearbeitet 21.04.2026 17:03:44
Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because...