FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
676ca486-9c1e-11ea-8b5e-b42e99a1b9c3Apache Tomcat Remote Code Execution via session persistence

The Apache Software Foundation reports:

Under certain circumstances an attacker will be able to trigger remote code execution via deserialization of the file under their control


Discovery 2020-05-12
Entry 2020-05-22
tomcat7
lt 7.0.104

tomcat85
lt 8.5.55

tomcat9
lt 9.0.35

tomcat-devel
lt 10.0.0.M5

http://tomcat.apache.org/security-7.html
http://tomcat.apache.org/security-8.html
http://tomcat.apache.org/security-9.html
http://tomcat.apache.org/security-10.html
CVE-2020-9484