Detections
Analytics

Apache Tomcat 8.5.0 < 8.5.86

medium Nessus Plugin ID 173256

Language:

Version 1.4

Oct 19, 2023, 8:16 PM

  • Plugin metadata (Added patch_publication_date for supersedence logic)

Plugin Feed: 202310192016

Version 1.3

May 25, 2023, 5:09 PM

  • IAVM reference

Plugin Feed: 202305251709

Version 1.2

Mar 28, 2023, 2:03 PM

  • CVSSv3 severity (based on CVE-2023-28708, severity decreased from "High" to "Medium")
  • CVSSv3 score source (set to "CVE-2023-28708")
  • CVSS metrics ("CVSSv2 score" changed from 6.4 to 5.0. "CVSSv2 score" changed from 6.4 to 5.0. "CVSSv2 score" changed from 6.4 to 5.0. "CVSSv3 score" changed from 9.8 to 4.3. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N" to "CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N". "CVSSv3 score" changed from 9.8 to 4.3. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N" to "CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N". "CVSSv3 score" changed from 9.8 to 4.3. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N" to "CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N". "CVSSv3 score" changed from 9.8 to 4.3)

Plugin Feed: 202303281403

Version 1.1

Mar 24, 2023, 10:05 AM

  • STIG Severity (set to "I")
  • IAVM reference

Plugin Feed: 202303241005

Version 1.0

Mar 22, 2023, 9:59 PM

  • New

Plugin Feed: 202303222159

* Changelogs are generally available for changes made after Nov 1, 2022