Apache Releases Security Updates for Apache Tomcat

The Apache Foundation has released security updates to address vulnerabilities in Apache Tomcat. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected server.

Threat ID:: CC-1647
Category:
Threat Severity:: Low
Threat Vector:
Published:: 20 September 2017 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

This content has been archived

This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk

Summary

Affected platforms

The following platforms are known to be affected:

Apache Tomcat

Threat details

Remediation steps

Type	Step
	Users and administrators are encouraged to review the Apache advisories for CVE-2017-12615 and CVE-2017-12616 for more information and apply the necessary updates.

CVE Vulnerabilities

Status

CVE-2017-12615

Status

CVE-2017-12616

Last edited: 17 February 2020 11:26 am