CVE-2017-15706 Apache Tomcat Incorrectly documented CGI search algorithm
Severity: Low
Vendor: The Apache Software Foundation
Versions Affected:
Apache Tomcat 9.0.0.M22 to 9.0.1
Apache Tomcat 8.5.16 to 8.5.23
Apache Tomcat 8.0.45 to 8.0.47
Apache Tomcat 7.0.79 to 7.0.82
Description:
As part of
CVE-2017-15698 Apache Tomcat Native Connector - OCSP check omitted
Severity: Moderate
Vendor: The Apache Software Foundation
Versions Affected:
Apache Tomcat Native 1.2.0 to 1.2.14
Apache Tomcat Native 1.1.23 to 1.1.34
Description:
When parsing the AIA-Extension field of a client certificate,