漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Incomplete fix for CVE-2020-9484
Vulnerability Description
The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note that both the previously published prerequisites for CVE-2020-9484 and the previously published mitigations for CVE-2020-9484 also apply to this issue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apache Tomcat 安全漏洞
Vulnerability Description
Apache Tomcat是美国阿帕奇(Apache)基金会的一款轻量级Web应用服务器。该程序实现了对Servlet和JavaServer Page(JSP)的支持。 Apache Tomcat存在安全漏洞,该漏洞源于Tomcat实例仍然容易受到CVE-2020-9494的攻击。以下产品及版本受到影响:Apache Tomcat 10.0.0-M1版本至10.0.0-M9版本,9.0.0.0版本至9.0.41版本,8.5.0版本至8.5.61版本,7.0.0版本至7.0.107版本。
CVSS Information
N/A
Vulnerability Type
N/A