Operating System and Release Information Product Familyįor software releases that are not yet generally available, the Fixed This JSP file can then be requested, and any code that the file contains can be executed by the server.Ĭlick the Hot Fix tab in this note to access the hot fix for this issue. Potential Impact: When you run Apache Tomcat versions 8.5.0 to 8.5.22 and 8.0.0.RC1 to 8.0.46 with HTTP PUT methods enabled, it is possible to upload a JavaServer page (JSP) file to the server via a specially crafted request. This version of Tomcat includes the following security vulnerabilities: The SAS Environment Manager web application server in SAS ® 9.4 TS1M4 and earlier is based on Apache Tomcat 8.0.36. This version of Tomcat includes the following security vulnerabilities: The SAS Environment Manager web application server that is available in the fifth maintenance release of SAS ® 9.4 (TS1M5) is based on Apache Tomcat 8.5.13. Description: Apache Tomcat 8.5.13 and 8.0.36 contain multiple security vulnerabilities.
0 Comments
Leave a Reply. |