THREAT OPS › Threat News › Apache Tomcat Multiple Vulnerabilities
Apache Tomcat Multiple Vulnerabilities
Multiple vulnerabilities were identified in Apache Tomcat. A remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting, elevation of privilege and security restriction bypass on the targeted system. <p>Impact</p> <ul> <li>Elevation of Privilege</li> <li>Security Restriction Bypass</li> <li>Cross-Site Scripting</li>
MITRE ATT&CK techniques
- VulnerabilitiesT1588.006
Indicators of compromise
- https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.119url
- https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.56url
- https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.23url