HomePentest-Tools.com Logo

Apache Tomcat Incorrectly Documented CGI Search Algorithm - Windows CVE-2017-15706

Severity
CVSSv3 Score
5.3
Vulnerability description

Apache Tomcat has an incorrectly documented CGI search algorithm.

Risk description

The flaw exists as the description of the search algorithm used by the CGI Servlet to identify which script to execute was not correct. Successfully exploiting this issue will result some scripts failing to execute as expected and other scripts to execute unexpectedly.

Recommendation

Upgrade to Apache Tomcat version 9.0.2, 8.5.24, 8.0.48, 7.0.84 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jan 31, 2018
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available