RHEL 9 : tomcat (Unpatched Vulnerability)

high Nessus Plugin ID 199760

Version 1.3

Jul 12, 2024, 10:18 PM

  • CVE (set "CVE" coverage to "CVE-2023-28709")
  • CVSS metrics ("CVSSv2 score" set to 7.8)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C")
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H")
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C")
  • CVSSv2 score source (changed from "CVE-2022-29885" to "CVE-2023-28709")
  • CVSSv2 severity (based on CVE-2023-28709, severity increased from "Medium" to "High")
  • CVSSv3 score source (changed from "CVE-2022-45143" to none)
  • Detection (updated detection logic)
  • Exploit attributes ("Exploit available" changed from "True" to "False")
  • Exploit attributes ("Exploitability ease" changed from "Exploits are available" to "No known exploits are available")
  • Plugin metadata

Plugin Feed: 202407122218