Amazon Linux AMI : tomcat8 (ALAS-2022-1572)

high Nessus Plugin ID 158696

Language:

Version 1.7 Dec 13, 2024, 9:53 AM CEA reference Plugin Feed: 202412130953
Version 1.6 Dec 11, 2024, 10:15 PM CVE (set "CVE" coverage to "CVE-2022-23181") CVSS metrics ("CVSSv2 score" set to 3.7) CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:L/AC:H/Au:N/C:P/I:P/A:P") CVSS metrics ("Cvssv4 score" set to 0.0) CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C") CVSSv2 score source (changed from "CVE-2020-9484" to "CVE-2022-23181") CVSSv2 severity (based on CVE-2022-23181, severity decreased from "Medium" to "Low") CVSSv2 severity (based on None, severity decreased from "High" to "Low") CVSSv3 score source (changed from "CVE-2022-23181" to none) Detection (updated detection logic) Exploit attributes ("Exploit available" changed from "True" to "False") Exploit attributes ("Exploitability ease" changed from "Exploits are available" to "No known exploits are available") Plugin metadata Plugin Feed: 202412112215
Version 1.5 Nov 6, 2023, 2:53 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C") CVSSv2 score source (changed from "CVE-2022-23181" to "CVE-2020-9484") CVSSv3 score source (set to "CVE-2022-23181") Plugin Feed: 202311061453
Version 1.4 Dec 6, 2022, 2:54 AM Reference Plugin Feed: 202212060254
Version 1.4 Nov 6, 2023, 1:01 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C") CVSSv2 score source (changed from "CVE-2022-23181" to "CVE-2020-9484") CVSSv3 score source (set to "CVE-2022-23181") Plugin Feed: 202311061301

* Changelogs are generally available for changes made after Nov 1, 2022