BDU:2020-00937
Scores
EPSS Score
0.0000
CVSS
3.x 9.8
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
All CVSS Scores
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Description
Уязвимость Apache Jserv Protocol - коннектора сервера приложений Apache Tomcat связана с ошибками при обработке входных данных. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, выполнить произвольный код
Sources
Related Vulnerabilities
Reference Links
Vulnerable Software
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: fedora 32
{
"version_end_including": "8.5.50",
"version_start_including": "8.5.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: opensuse leap 15.1
{
"version_end_including": "9.0.30",
"version_start_including": "9.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: opensuse leap 15.1
{
"version_end_including": "8.5.50",
"version_start_including": "8.5.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: opensuse leap 15.1
{
"version_end_including": "7.0.99",
"version_start_including": "7.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: astra 1.6
{
"version_end_including": "9.0.30",
"version_start_including": "9.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: astra 1.6
{
"version_end_including": "8.5.50",
"version_start_including": "8.5.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: astra 1.6
{
"version_end_including": "7.0.99",
"version_start_including": "7.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: debian gnu/linux 9
{
"version_end_including": "9.0.30",
"version_start_including": "9.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: debian gnu/linux 9
{
"version_end_including": "8.5.50",
"version_start_including": "8.5.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: debian gnu/linux 9
{
"version_end_including": "7.0.99",
"version_start_including": "7.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: fedora 30
{
"version_end_including": "7.0.99",
"version_start_including": "7.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: fedora 32
{
"version_end_including": "9.0.30",
"version_start_including": "9.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: fedora 32
{
"version_end_including": "7.0.99",
"version_start_including": "7.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: strelets *
{
"version_end_including": "9.0.30",
"version_start_including": "9.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: strelets *
{
"version_end_including": "8.5.50",
"version_start_including": "8.5.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: strelets *
{
"version_end_including": "7.0.99",
"version_start_including": "7.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: fedora 31
{
"version_end_including": "9.0.30",
"version_start_including": "9.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: fedora 31
{
"version_end_including": "8.5.50",
"version_start_including": "8.5.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: fedora 31
{
"version_end_including": "7.0.99",
"version_start_including": "7.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: fedora 30
{
"version_end_including": "9.0.30",
"version_start_including": "9.0.0"
}Source: bdu
Type: Configuration
Vendor: apache software foundation
Product: apache tomcat
Operating System: fedora 30
{
"version_end_including": "8.5.50",
"version_start_including": "8.5.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: agile engineering data management
Operating System: fedora 30
{
"version_exact": "6.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: agile engineering data management
Operating System: fedora 31
{
"version_exact": "6.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: agile engineering data management
Operating System: strelets *
{
"version_exact": "6.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: agile engineering data management
Operating System: fedora 32
{
"version_exact": "6.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: agile engineering data management
Operating System: debian gnu/linux 9
{
"version_exact": "6.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: agile engineering data management
Operating System: astra 1.6
{
"version_exact": "6.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: agile engineering data management
Operating System: opensuse leap 15.1
{
"version_exact": "6.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: communications instant messaging server
Operating System: opensuse leap 15.1
{
"version_exact": "10.0.1.4.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: communications instant messaging server
Operating System: fedora 30
{
"version_exact": "10.0.1.4.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: communications instant messaging server
Operating System: fedora 31
{
"version_exact": "10.0.1.4.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: communications instant messaging server
Operating System: strelets *
{
"version_exact": "10.0.1.4.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: communications instant messaging server
Operating System: fedora 32
{
"version_exact": "10.0.1.4.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: communications instant messaging server
Operating System: debian gnu/linux 9
{
"version_exact": "10.0.1.4.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: communications instant messaging server
Operating System: astra 1.6
{
"version_exact": "10.0.1.4.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: opensuse leap 15.1
{
"version_end_including": "8.0.20"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: strelets *
{
"version_end_including": "8.0.20"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: fedora 32
{
"version_end_including": "4.0.12"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: astra 1.6
{
"version_end_including": "8.0.20"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: fedora 32
{
"version_end_including": "8.0.20"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: debian gnu/linux 9
{
"version_end_including": "4.0.12"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: debian gnu/linux 9
{
"version_end_including": "8.0.20"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: astra 1.6
{
"version_end_including": "4.0.12"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: opensuse leap 15.1
{
"version_end_including": "4.0.12"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: strelets *
{
"version_end_including": "4.0.12"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: fedora 31
{
"version_end_including": "8.0.20"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: fedora 31
{
"version_end_including": "4.0.12"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: fedora 30
{
"version_end_including": "8.0.20"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: mysql enterprise monitor
Operating System: fedora 30
{
"version_end_including": "4.0.12"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: fedora 31
{
"version_exact": "9.3.6"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: debian gnu/linux 9
{
"version_exact": "9.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: debian gnu/linux 9
{
"version_exact": "9.3.6"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: fedora 32
{
"version_exact": "9.3.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: fedora 32
{
"version_exact": "9.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: fedora 32
{
"version_exact": "9.3.6"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: strelets *
{
"version_exact": "9.3.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: strelets *
{
"version_exact": "9.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: strelets *
{
"version_exact": "9.3.6"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: fedora 31
{
"version_exact": "9.3.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: fedora 31
{
"version_exact": "9.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: fedora 30
{
"version_exact": "9.3.6"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: fedora 30
{
"version_exact": "9.3.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: fedora 30
{
"version_exact": "9.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: astra 1.6
{
"version_exact": "9.3.6"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: astra 1.6
{
"version_exact": "9.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: astra 1.6
{
"version_exact": "9.3.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: opensuse leap 15.1
{
"version_exact": "9.3.6"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: opensuse leap 15.1
{
"version_exact": "9.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: opensuse leap 15.1
{
"version_exact": "9.3.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle agile plm
Operating System: debian gnu/linux 9
{
"version_exact": "9.3.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: fedora 32
{
"version_exact": "8.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: fedora 30
{
"version_exact": "8.1.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: opensuse leap 15.1
{
"version_exact": "8.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: opensuse leap 15.1
{
"version_exact": "8.1.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: astra 1.6
{
"version_exact": "8.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: astra 1.6
{
"version_exact": "8.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: astra 1.6
{
"version_exact": "8.1.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: debian gnu/linux 9
{
"version_exact": "8.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: debian gnu/linux 9
{
"version_exact": "8.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: debian gnu/linux 9
{
"version_exact": "8.1.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: fedora 32
{
"version_exact": "8.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: strelets *
{
"version_exact": "8.1.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: fedora 32
{
"version_exact": "8.1.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: strelets *
{
"version_exact": "8.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: strelets *
{
"version_exact": "8.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: fedora 31
{
"version_exact": "8.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: fedora 31
{
"version_exact": "8.1.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: fedora 30
{
"version_exact": "8.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: fedora 30
{
"version_exact": "8.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: opensuse leap 15.1
{
"version_exact": "8.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle communications element manager
Operating System: fedora 31
{
"version_exact": "8.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica inspections
Operating System: fedora 31
{
"version_exact": "1.0.1.2"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica inspections
Operating System: fedora 30
{
"version_exact": "1.0.1.2"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica inspections
Operating System: strelets *
{
"version_exact": "1.0.1.2"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica inspections
Operating System: fedora 32
{
"version_exact": "1.0.1.2"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica inspections
Operating System: debian gnu/linux 9
{
"version_exact": "1.0.1.2"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica inspections
Operating System: astra 1.6
{
"version_exact": "1.0.1.2"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica inspections
Operating System: opensuse leap 15.1
{
"version_exact": "1.0.1.2"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica signal
Operating System: astra 1.6
{
"version_exact": "7.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica signal
Operating System: debian gnu/linux 9
{
"version_exact": "7.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica signal
Operating System: fedora 32
{
"version_exact": "7.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica signal
Operating System: strelets *
{
"version_exact": "7.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica signal
Operating System: fedora 31
{
"version_exact": "7.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica signal
Operating System: fedora 30
{
"version_exact": "7.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle health sciences empirica signal
Operating System: opensuse leap 15.1
{
"version_exact": "7.3.3"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: fedora 30
{
"version_exact": "4.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: debian gnu/linux 9
{
"version_exact": "4.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: debian gnu/linux 9
{
"version_exact": "4.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: astra 1.6
{
"version_exact": "4.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: astra 1.6
{
"version_exact": "4.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: opensuse leap 15.1
{
"version_exact": "4.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: opensuse leap 15.1
{
"version_exact": "4.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: fedora 31
{
"version_exact": "4.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: fedora 32
{
"version_exact": "4.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: fedora 32
{
"version_exact": "4.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: strelets *
{
"version_exact": "4.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: strelets *
{
"version_exact": "4.2.0"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: fedora 31
{
"version_exact": "4.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: oracle hospitality guest access
Operating System: fedora 30
{
"version_exact": "4.2.1"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: siebel ui framework
Operating System: fedora 32
{
"version_end_including": "20.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: siebel ui framework
Operating System: fedora 30
{
"version_end_including": "20.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: siebel ui framework
Operating System: opensuse leap 15.1
{
"version_end_including": "20.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: siebel ui framework
Operating System: astra 1.6
{
"version_end_including": "20.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: siebel ui framework
Operating System: debian gnu/linux 9
{
"version_end_including": "20.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: siebel ui framework
Operating System: strelets *
{
"version_end_including": "20.5"
}Source: bdu
Type: Configuration
Vendor: oracle corp.
Product: siebel ui framework
Operating System: fedora 31
{
"version_end_including": "20.5"
}Source: bdu