摘要:
A vulnerability was found in Apache Tomcat up to 9.0.89/10.1.24/11.0.0-M20 (Application Server Software). It has been declared as critical. Affected by this vulnerability is some unknown functionality of the component TLS Handshake Handler. Upgrading to version 9.0.90, 10.1.25 or 11.0.0-M21 eliminates this vulnerability. The upgrade is hosted for download at tomcat.apache.org.
安全等级: Low
公告ID: KylinSec-SA-2024-3845
发布日期: 2024年9月28日
关联CVE: CVE-2024-38286
A vulnerability was found in Apache Tomcat up to 9.0.89/10.1.24/11.0.0-M20 (Application Server Software). It has been declared as critical. Affected by this vulnerability is some unknown functionality of the component TLS Handshake Handler. Upgrading to version 9.0.90, 10.1.25 or 11.0.0-M21 eliminates this vulnerability. The upgrade is hosted for download at tomcat.apache.org.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2024-38286 | KY3.4-5A | tomcat | Unaffected |
| CVE-2024-38286 | KY3.5.2 | tomcat | Unaffected |
| CVE-2024-38286 | V6 | tomcat | Unaffected |
