Apache Software Foundation Releases Security Updates

The Apache Foundation has released security updates to address vulnerabilities in Apache Tomcat. Exploitation of one of these vulnerabilities may cause a remote attacker to obtain sensitive information.

Threat ID:: CC-1329
Category:
Threat Severity:: Medium
Threat Vector:
Published:: 13 April 2017 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

This content has been archived

This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk

Summary

Affected platforms

The following platforms are known to be affected:

Apache Tomcat

Threat details

Users and administrators are encouraged to review Apache.org CVE-2017-5648, CVE-2017-5650, and CVE-2017-5651 for more information and apply the necessary updates.

Remediation steps

Type	Step
	Ensure Apache Tomcat is patched with all latest updates

CVE Vulnerabilities

Status

CVE-2017-5648

Status

CVE-2017-5650

Status

CVE-2017-5651

Last edited: 17 February 2020 11:26 am