Detections
Analytics

Apache Tomcat 9.0.0.M1 < 9.0.86 multiple vulnerabilities

medium Nessus Plugin ID 192042

Language:

Version 1.6

Nov 19, 2024, 9:44 AM

  • CVSS metrics ("CVSSv3 score" set to 6.3)
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L")
  • CVSSv3 score source (set to "CVE-2024-23672")
  • CVSSv3 severity (based on CVE-2024-23672, severity decreased from "High" to "Medium")

Plugin Feed: 202411190944

Version 1.5

Aug 20, 2024, 9:39 AM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True")
  • Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")

Plugin Feed: 202408200939

Version 1.4

Jul 12, 2024, 5:55 PM

  • IAVM reference

Plugin Feed: 202407121755

Version 1.3

May 23, 2024, 8:37 PM

  • CVSS metrics ("CVSSv2 score" set to 7.8)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C")
  • CVSSv2 severity (based on CVE-2024-24549, severity increased from "Medium" to "High")
  • Detection (updated detection logic)

Plugin Feed: 202405232037

Version 1.1

Mar 15, 2024, 3:57 PM

  • IAVM reference
  • STIG Severity (set to "I")

Plugin Feed: 202403151557

Version 1.0

Mar 13, 2024, 11:47 PM

  • New

Plugin Feed: 202403132347

Version 1.0

Mar 15, 2024, 1:33 PM

  • IAVM reference
  • STIG Severity (set to "I")

Plugin Feed: 202403151333

* Changelogs are generally available for changes made after Nov 1, 2022