Language:
http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
https://www.imperialviolet.org/2014/10/14/poodle.html
https://www.openssl.org/~bodo/ssl-poodle.pdf
https://tools.ietf.org/html/draft-ietf-tls-downgrade-scsv-00
Severity: High
ID: 81650
File Name: tomcat_7_0_57.nasl
Version: 1.11
Type: combined
Agent: windows, macosx, unix
Family: Web Servers
Published: 3/5/2015
Updated: 4/11/2022
Supported Sensors: Nessus Agent
CVSS Score Source: CVE-2014-3505
Risk Factor: Medium
Score: 5.9
Risk Factor: High
Base Score: 7.5
Temporal Score: 5.5
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Temporal Vector: E:U/RL:OF/RC:C
Risk Factor: High
Base Score: 7.3
Temporal Score: 6.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Temporal Vector: E:U/RL:O/RC:C
CPE: cpe:/a:apache:tomcat
Required KB Items: installed_sw/Apache Tomcat
Exploit Ease: No known exploits are available
Patch Publication Date: 11/11/2014
Vulnerability Publication Date: 8/6/2014
CVE: CVE-2014-3505, CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3509, CVE-2014-3510, CVE-2014-3511, CVE-2014-3512, CVE-2014-3513, CVE-2014-3566, CVE-2014-3567, CVE-2014-3568, CVE-2014-5139
BID: 69075, 69076, 69077, 69078, 69079, 69081, 69082, 69083, 69084, 70574, 70584, 70585, 70586
CERT: 577193