๐ CVE-2015-5174 | Apache Tomcat 6.0/7.0/8.0/9.0 ServletContext getResource/getResourceAsStream/getResourcePaths path traversal (RHSA-2016:1432 / BID-83329)
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability, which was classified as critical, was found in Apache Tomcat 6.0/7.0/8.0/9.0. Affected is the function getResource/getResourceAsStream/getResourcePaths
of the component ServletContext. The manipulation leads to path traversal.
This vulnerability is traded as CVE-2015-5174. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component. ...