Vulnerabilities > CVE-2019-12418

047910
CVSS 7.0 - HIGH
Attack vector
LOCAL
Attack complexity
HIGH
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH

Summary

When Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47, 7.0.0 and 7.0.97 is configured with the JMX Remote Lifecycle Listener, a local attacker without access to the Tomcat process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack to capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and gain complete control over the Tomcat instance.

Vulnerable Configurations

Part Description Count
Application
Apache
238
Application
Oracle
3
Application
Netapp
5
OS
Debian
3
OS
Canonical
1
OS
Opensuse
1

Nessus

  • NASL familyDebian Local Security Checks
    NASL idDEBIAN_DLA-2155.NASL
    descriptionTomcat8 is configured with the JMX Remote Lifecycle Listener, a local attacker without access to the Tomcat process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack to capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and gain complete control over the Tomcat instance. For Debian 8
    last seen2020-03-28
    modified2020-03-25
    plugin id134879
    published2020-03-25
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/134879
    titleDebian DLA-2155-1 : tomcat8 security update
    code
    #
    # (C) Tenable Network Security, Inc.
    #
    # The descriptive text and package checks in this plugin were
    # extracted from Debian Security Advisory DLA-2155-1. The text
    # itself is copyright (C) Software in the Public Interest, Inc.
    #
    
    include("compat.inc");
    
    if (description)
    {
      script_id(134879);
      script_version("1.2");
      script_set_attribute(attribute:"plugin_modification_date", value:"2020/03/27");
    
      script_cve_id("CVE-2019-12418");
    
      script_name(english:"Debian DLA-2155-1 : tomcat8 security update");
      script_summary(english:"Checks dpkg output for the updated packages.");
    
      script_set_attribute(
        attribute:"synopsis", 
        value:"The remote Debian host is missing a security update."
      );
      script_set_attribute(
        attribute:"description", 
        value:
    "Tomcat8 is configured with the JMX Remote Lifecycle Listener, a local
    attacker without access to the Tomcat process or configuration files
    is able to manipulate the RMI registry to perform a man-in-the-middle
    attack to capture user names and passwords used to access the JMX
    interface. The attacker can then use these credentials to access the
    JMX interface and gain complete control over the Tomcat instance.
    
    For Debian 8 'Jessie', this problem has been fixed in version
    8.0.14-1+deb8u16.
    
    We recommend that you upgrade your tomcat8 packages.
    
    NOTE: Tenable Network Security has extracted the preceding description
    block directly from the DLA security advisory. Tenable has attempted
    to automatically clean and format it as much as possible without
    introducing additional issues."
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://lists.debian.org/debian-lts-announce/2020/03/msg00029.html"
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://packages.debian.org/source/jessie/tomcat8"
      );
      script_set_attribute(attribute:"solution", value:"Upgrade the affected packages.");
      script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:P");
      script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
      script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H");
      script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
      script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
    
      script_set_attribute(attribute:"plugin_type", value:"local");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libservlet3.1-java");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libservlet3.1-java-doc");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libtomcat8-java");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:tomcat8");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:tomcat8-admin");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:tomcat8-common");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:tomcat8-docs");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:tomcat8-examples");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:tomcat8-user");
      script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:8.0");
    
      script_set_attribute(attribute:"vuln_publication_date", value:"2019/12/23");
      script_set_attribute(attribute:"patch_publication_date", value:"2020/03/24");
      script_set_attribute(attribute:"plugin_publication_date", value:"2020/03/25");
      script_set_attribute(attribute:"generated_plugin", value:"current");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_copyright(english:"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
      script_family(english:"Debian Local Security Checks");
    
      script_dependencies("ssh_get_info.nasl");
      script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
    
      exit(0);
    }
    
    
    include("audit.inc");
    include("debian_package.inc");
    
    
    if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
    if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
    if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
    
    
    flag = 0;
    if (deb_check(release:"8.0", prefix:"libservlet3.1-java", reference:"8.0.14-1+deb8u16")) flag++;
    if (deb_check(release:"8.0", prefix:"libservlet3.1-java-doc", reference:"8.0.14-1+deb8u16")) flag++;
    if (deb_check(release:"8.0", prefix:"libtomcat8-java", reference:"8.0.14-1+deb8u16")) flag++;
    if (deb_check(release:"8.0", prefix:"tomcat8", reference:"8.0.14-1+deb8u16")) flag++;
    if (deb_check(release:"8.0", prefix:"tomcat8-admin", reference:"8.0.14-1+deb8u16")) flag++;
    if (deb_check(release:"8.0", prefix:"tomcat8-common", reference:"8.0.14-1+deb8u16")) flag++;
    if (deb_check(release:"8.0", prefix:"tomcat8-docs", reference:"8.0.14-1+deb8u16")) flag++;
    if (deb_check(release:"8.0", prefix:"tomcat8-examples", reference:"8.0.14-1+deb8u16")) flag++;
    if (deb_check(release:"8.0", prefix:"tomcat8-user", reference:"8.0.14-1+deb8u16")) flag++;
    
    if (flag)
    {
      if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
      else security_warning(0);
      exit(0);
    }
    else audit(AUDIT_HOST_NOT, "affected");
    
  • NASL familyHuawei Local Security Checks
    NASL idEULEROS_SA-2020-1438.NASL
    descriptionAccording to the versions of the tomcat packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited in ways that may be surprising. In Apache Tomcat 9.0.0.M1 to 9.0.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99, Tomcat shipped with an AJP Connector enabled by default that listened on all configured IP addresses. It was expected (and recommended in the security guide) that this Connector would be disabled if not required. This vulnerability report identified a mechanism that allowed: - returning arbitrary files from anywhere in the web application - processing any file in the web application as a JSP Further, if the web application allowed file upload and stored those files within the web application (or the attacker was able to control the content of the web application by some other means) then this, along with the ability to process a file as a JSP, made remote code execution possible. It is important to note that mitigation is only required if an AJP port is accessible to untrusted users. Users wishing to take a defence-in-depth approach and block the vector that permits returning arbitrary files and execution as JSP may upgrade to Apache Tomcat 9.0.31, 8.5.51 or 7.0.100 or later. A number of changes were made to the default AJP Connector configuration in 9.0.31 to harden the default configuration. It is likely that users upgrading to 9.0.31, 8.5.51 or 7.0.100 or later will need to make small changes to their configurations.(CVE-2020-1938) - When Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47, 7.0.0 and 7.0.97 is configured with the JMX Remote Lifecycle Listener, a local attacker without access to the Tomcat process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack to capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and gain complete control over the Tomcat instance.(CVE-2019-12418) - When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29, 8.5.0 to 8.5.49 and 7.0.0 to 7.0.98 there was a narrow window where an attacker could perform a session fixation attack. The window was considered too narrow for an exploit to be practical but, erring on the side of caution, this issue has been treated as a security vulnerability.(CVE-2019-17563) Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-05-06
    modified2020-04-15
    plugin id135567
    published2020-04-15
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/135567
    titleEulerOS 2.0 SP3 : tomcat (EulerOS-SA-2020-1438)
    code
    #
    # (C) Tenable Network Security, Inc.
    #
    
    include("compat.inc");
    
    if (description)
    {
      script_id(135567);
      script_version("1.4");
      script_set_attribute(attribute:"plugin_modification_date", value:"2020/05/04");
    
      script_cve_id(
        "CVE-2019-12418",
        "CVE-2019-17563",
        "CVE-2020-1938"
      );
    
      script_name(english:"EulerOS 2.0 SP3 : tomcat (EulerOS-SA-2020-1438)");
      script_summary(english:"Checks the rpm output for the updated packages.");
    
      script_set_attribute(attribute:"synopsis", value:
    "The remote EulerOS host is missing multiple security updates.");
      script_set_attribute(attribute:"description", value:
    "According to the versions of the tomcat packages installed, the
    EulerOS installation on the remote host is affected by the following
    vulnerabilities :
    
      - When using the Apache JServ Protocol (AJP), care must
        be taken when trusting incoming connections to Apache
        Tomcat. Tomcat treats AJP connections as having higher
        trust than, for example, a similar HTTP connection. If
        such connections are available to an attacker, they can
        be exploited in ways that may be surprising. In Apache
        Tomcat 9.0.0.M1 to 9.0.0.30, 8.5.0 to 8.5.50 and 7.0.0
        to 7.0.99, Tomcat shipped with an AJP Connector enabled
        by default that listened on all configured IP
        addresses. It was expected (and recommended in the
        security guide) that this Connector would be disabled
        if not required. This vulnerability report identified a
        mechanism that allowed: - returning arbitrary files
        from anywhere in the web application - processing any
        file in the web application as a JSP Further, if the
        web application allowed file upload and stored those
        files within the web application (or the attacker was
        able to control the content of the web application by
        some other means) then this, along with the ability to
        process a file as a JSP, made remote code execution
        possible. It is important to note that mitigation is
        only required if an AJP port is accessible to untrusted
        users. Users wishing to take a defence-in-depth
        approach and block the vector that permits returning
        arbitrary files and execution as JSP may upgrade to
        Apache Tomcat 9.0.31, 8.5.51 or 7.0.100 or later. A
        number of changes were made to the default AJP
        Connector configuration in 9.0.31 to harden the default
        configuration. It is likely that users upgrading to
        9.0.31, 8.5.51 or 7.0.100 or later will need to make
        small changes to their configurations.(CVE-2020-1938)
    
      - When Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47,
        7.0.0 and 7.0.97 is configured with the JMX Remote
        Lifecycle Listener, a local attacker without access to
        the Tomcat process or configuration files is able to
        manipulate the RMI registry to perform a
        man-in-the-middle attack to capture user names and
        passwords used to access the JMX interface. The
        attacker can then use these credentials to access the
        JMX interface and gain complete control over the Tomcat
        instance.(CVE-2019-12418)
    
      - When using FORM authentication with Apache Tomcat
        9.0.0.M1 to 9.0.29, 8.5.0 to 8.5.49 and 7.0.0 to 7.0.98
        there was a narrow window where an attacker could
        perform a session fixation attack. The window was
        considered too narrow for an exploit to be practical
        but, erring on the side of caution, this issue has been
        treated as a security vulnerability.(CVE-2019-17563)
    
    Note that Tenable Network Security has extracted the preceding
    description block directly from the EulerOS security advisory. Tenable
    has attempted to automatically clean and format it as much as possible
    without introducing additional issues.");
      # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2020-1438
      script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?59d11dcf");
      script_set_attribute(attribute:"solution", value:
    "Update the affected tomcat packages.");
      script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
      script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
      script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
      script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
      script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
      script_set_attribute(attribute:"exploit_available", value:"true");
    
      script_set_attribute(attribute:"patch_publication_date", value:"2020/04/16");
      script_set_attribute(attribute:"plugin_publication_date", value:"2020/04/15");
    
      script_set_attribute(attribute:"plugin_type", value:"local");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:tomcat");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:tomcat-admin-webapps");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:tomcat-el-2.2-api");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:tomcat-jsp-2.2-api");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:tomcat-lib");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:tomcat-servlet-3.0-api");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:tomcat-webapps");
      script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
      script_set_attribute(attribute:"generated_plugin", value:"current");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_family(english:"Huawei Local Security Checks");
    
      script_copyright(english:"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
    
      script_dependencies("ssh_get_info.nasl");
      script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
      script_exclude_keys("Host/EulerOS/uvp_version");
    
      exit(0);
    }
    
    include("audit.inc");
    include("global_settings.inc");
    include("rpm.inc");
    
    if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
    
    release = get_kb_item("Host/EulerOS/release");
    if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
    if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");
    
    sp = get_kb_item("Host/EulerOS/sp");
    if (isnull(sp) || sp !~ "^(3)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP3");
    
    uvp = get_kb_item("Host/EulerOS/uvp_version");
    if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP3", "EulerOS UVP " + uvp);
    
    if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
    
    cpu = get_kb_item("Host/cpu");
    if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
    if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
    if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);
    
    flag = 0;
    
    pkgs = ["tomcat-7.0.76-8.h8",
            "tomcat-admin-webapps-7.0.76-8.h8",
            "tomcat-el-2.2-api-7.0.76-8.h8",
            "tomcat-jsp-2.2-api-7.0.76-8.h8",
            "tomcat-lib-7.0.76-8.h8",
            "tomcat-servlet-3.0-api-7.0.76-8.h8",
            "tomcat-webapps-7.0.76-8.h8"];
    
    foreach (pkg in pkgs)
      if (rpm_check(release:"EulerOS-2.0", sp:"3", reference:pkg)) flag++;
    
    if (flag)
    {
      security_report_v4(
        port       : 0,
        severity   : SECURITY_HOLE,
        extra      : rpm_report_get()
      );
      exit(0);
    }
    else
    {
      tested = pkg_tests_get();
      if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
      else audit(AUDIT_PACKAGE_NOT_INSTALLED, "tomcat");
    }
    
  • NASL familyPhotonOS Local Security Checks
    NASL idPHOTONOS_PHSA-2020-1_0-0264_APACHE.NASL
    descriptionAn update of the apache package has been released.
    last seen2020-03-17
    modified2020-01-16
    plugin id132979
    published2020-01-16
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/132979
    titlePhoton OS 1.0: Apache PHSA-2020-1.0-0264
    code
    #
    # (C) Tenable Network Security, Inc.
    #
    
    
    # The descriptive text and package checks in this plugin were
    # extracted from VMware Security Advisory PHSA-2020-1.0-0264. The text
    # itself is copyright (C) VMware, Inc.
    
    
    include('compat.inc');
    
    if (description)
    {
      script_id(132979);
      script_version("1.4");
      script_set_attribute(attribute:"plugin_modification_date", value:"2020/01/18");
    
      script_cve_id("CVE-2019-12418", "CVE-2019-17563");
    
      script_name(english:"Photon OS 1.0: Apache PHSA-2020-1.0-0264");
    
      script_set_attribute(attribute:"synopsis", value:
    "The remote PhotonOS host is missing multiple security updates.");
      script_set_attribute(attribute:"description", value:
    "An update of the apache package has been released.");
      script_set_attribute(attribute:"see_also", value:"https://github.com/vmware/photon/wiki/Security-Updates-1.0-264.md");
      script_set_attribute(attribute:"solution", value:
    "Update the affected Linux packages.");
      script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P");
      script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
      script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H");
      script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
      script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-17563");
    
      script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
    
      script_set_attribute(attribute:"vuln_publication_date", value:"2019/12/23");
      script_set_attribute(attribute:"patch_publication_date", value:"2020/01/15");
      script_set_attribute(attribute:"plugin_publication_date", value:"2020/01/16");
    
      script_set_attribute(attribute:"plugin_type", value:"local");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:apache");
      script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:photonos:1.0");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_family(english:"PhotonOS Local Security Checks");
    
      script_copyright(english:"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
    
      script_dependencies("ssh_get_info.nasl");
      script_require_keys("Host/local_checks_enabled", "Host/PhotonOS/release", "Host/PhotonOS/rpm-list");
    
      exit(0);
    }
    
    include("audit.inc");
    include("global_settings.inc");
    include("rpm.inc");
    
    if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
    
    release = get_kb_item("Host/PhotonOS/release");
    if (isnull(release) || release !~ "^VMware Photon") audit(AUDIT_OS_NOT, "PhotonOS");
    if (release !~ "^VMware Photon (?:Linux|OS) 1\.0(\D|$)") audit(AUDIT_OS_NOT, "PhotonOS 1.0");
    
    if (!get_kb_item("Host/PhotonOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
    
    cpu = get_kb_item("Host/cpu");
    if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
    if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "PhotonOS", cpu);
    
    flag = 0;
    
    if (rpm_check(release:"PhotonOS-1.0", reference:"apache-tomcat-8.5.50-1.ph1")) flag++;
    
    if (flag)
    {
      security_report_v4(
        port       : 0,
        severity   : SECURITY_WARNING,
        extra      : rpm_report_get()
      );
      exit(0);
    }
    else
    {
      tested = pkg_tests_get();
      if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
      else audit(AUDIT_PACKAGE_NOT_INSTALLED, "apache");
    }
    
    
  • NASL familyDebian Local Security Checks
    NASL idDEBIAN_DSA-4596.NASL
    descriptionSeveral issues were discovered in the Tomcat servlet and JSP engine, which could result in session fixation attacks, information disclosure, cross-site scripting, denial of service via resource exhaustion and insecure redirects.
    last seen2020-06-01
    modified2020-06-02
    plugin id132427
    published2019-12-30
    reporterThis script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/132427
    titleDebian DSA-4596-1 : tomcat8 - security update
    code
    #
    # (C) Tenable Network Security, Inc.
    #
    # The descriptive text and package checks in this plugin were  
    # extracted from Debian Security Advisory DSA-4596. The text 
    # itself is copyright (C) Software in the Public Interest, Inc.
    #
    
    include("compat.inc");
    
    if (description)
    {
      script_id(132427);
      script_version("1.2");
      script_cvs_date("Date: 2020/01/02");
    
      script_cve_id("CVE-2018-11784", "CVE-2018-8014", "CVE-2019-0199", "CVE-2019-0221", "CVE-2019-12418", "CVE-2019-17563");
      script_xref(name:"DSA", value:"4596");
    
      script_name(english:"Debian DSA-4596-1 : tomcat8 - security update");
      script_summary(english:"Checks dpkg output for the updated package");
    
      script_set_attribute(
        attribute:"synopsis", 
        value:"The remote Debian host is missing a security-related update."
      );
      script_set_attribute(
        attribute:"description", 
        value:
    "Several issues were discovered in the Tomcat servlet and JSP engine,
    which could result in session fixation attacks, information
    disclosure, cross-site scripting, denial of service via resource
    exhaustion and insecure redirects."
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://security-tracker.debian.org/tracker/source-package/tomcat8"
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://packages.debian.org/source/stretch/tomcat8"
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://www.debian.org/security/2019/dsa-4596"
      );
      script_set_attribute(
        attribute:"solution", 
        value:
    "Upgrade the tomcat8 packages.
    
    For the oldstable distribution (stretch), these problems have been
    fixed in version 8.5.50-0+deb9u1. This update also requires an updated
    version of tomcat-native which has been updated to 1.2.21-1~deb9u1."
      );
      script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
      script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
      script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
      script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
      script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
    
      script_set_attribute(attribute:"plugin_type", value:"local");
      script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:tomcat8");
      script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:9.0");
    
      script_set_attribute(attribute:"vuln_publication_date", value:"2018/05/16");
      script_set_attribute(attribute:"patch_publication_date", value:"2019/12/27");
      script_set_attribute(attribute:"plugin_publication_date", value:"2019/12/30");
      script_set_attribute(attribute:"generated_plugin", value:"current");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_copyright(english:"This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
      script_family(english:"Debian Local Security Checks");
    
      script_dependencies("ssh_get_info.nasl");
      script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
    
      exit(0);
    }
    
    
    include("audit.inc");
    include("debian_package.inc");
    
    
    if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
    if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
    if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
    
    
    flag = 0;
    if (deb_check(release:"9.0", prefix:"libservlet3.1-java", reference:"8.5.50-0+deb9u1")) flag++;
    if (deb_check(release:"9.0", prefix:"libservlet3.1-java-doc", reference:"8.5.50-0+deb9u1")) flag++;
    if (deb_check(release:"9.0", prefix:"libtomcat8-embed-java", reference:"8.5.50-0+deb9u1")) flag++;
    if (deb_check(release:"9.0", prefix:"libtomcat8-java", reference:"8.5.50-0+deb9u1")) flag++;
    if (deb_check(release:"9.0", prefix:"tomcat8", reference:"8.5.50-0+deb9u1")) flag++;
    if (deb_check(release:"9.0", prefix:"tomcat8-admin", reference:"8.5.50-0+deb9u1")) flag++;
    if (deb_check(release:"9.0", prefix:"tomcat8-common", reference:"8.5.50-0+deb9u1")) flag++;
    if (deb_check(release:"9.0", prefix:"tomcat8-docs", reference:"8.5.50-0+deb9u1")) flag++;
    if (deb_check(release:"9.0", prefix:"tomcat8-examples", reference:"8.5.50-0+deb9u1")) flag++;
    if (deb_check(release:"9.0", prefix:"tomcat8-user", reference:"8.5.50-0+deb9u1")) flag++;
    
    if (flag)
    {
      if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
      else security_hole(0);
      exit(0);
    }
    else audit(AUDIT_HOST_NOT, "affected");
    
  • NASL familyWeb Servers
    NASL idTOMCAT_8_5_49.NASL
    descriptionThe version of Tomcat installed on the remote host is prior to 8.5.49. It is, therefore, affected by a vulnerability as referenced in the fixed_in_apache_tomcat_8.5.49_security-8 advisory. - When Apache Tomcat is configured with the JMX Remote Lifecycle Listener, a local attacker without access to the Tomcat process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack to capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and gain complete control over the Tomcat instance. (CVE-2019-12418) Note that Nessus has not tested for this issue but has instead relied only on the application
    last seen2020-03-18
    modified2019-12-27
    plugin id132413
    published2019-12-27
    reporterThis script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/132413
    titleApache Tomcat 8.5.0 < 8.5.49 Privilege Escalation
    code
    #
    # (C) Tenable Network Security, Inc.
    #
    
    include('compat.inc');
    
    if (description)
    {
      script_id(132413);
      script_version("1.4");
      script_set_attribute(attribute:"plugin_modification_date", value:"2020/03/11");
    
      script_cve_id("CVE-2019-12418");
    
      script_name(english:"Apache Tomcat 8.5.0 < 8.5.49 Privilege Escalation");
    
      script_set_attribute(attribute:"synopsis", value:
    "The remote Apache Tomcat server is affected by a vulnerability");
      script_set_attribute(attribute:"description", value:
    "The version of Tomcat installed on the remote host is prior to 8.5.49. It is, therefore, affected by a vulnerability as
    referenced in the fixed_in_apache_tomcat_8.5.49_security-8 advisory.
    
      - When Apache Tomcat is configured with the JMX Remote 
        Lifecycle Listener, a local attacker without access to 
        the Tomcat process or configuration files is able to 
        manipulate the RMI registry to perform a man-in-the-middle 
        attack to capture user names and passwords used to access 
        the JMX interface. The attacker can then use these 
        credentials to access the JMX interface and gain complete 
        control over the Tomcat instance. (CVE-2019-12418)
    
    Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
    number.");
      script_set_attribute(attribute:"see_also", value:"https://github.com/apache/tomcat/commit/a91d7db");
      # https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.49
      script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ed6582f2");
      script_set_attribute(attribute:"solution", value:
    "Upgrade to Apache Tomcat version 8.5.49 or later.");
      script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:P");
      script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
      script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H");
      script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
      script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-12418");
    
      script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
    
      script_set_attribute(attribute:"vuln_publication_date", value:"2019/04/23");
      script_set_attribute(attribute:"plugin_publication_date", value:"2019/12/27");
    
      script_set_attribute(attribute:"plugin_type", value:"combined");
      script_set_attribute(attribute:"cpe", value:"cpe:/a:apache:tomcat");
      script_set_attribute(attribute:"agent", value:"all");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_family(english:"Web Servers");
    
      script_copyright(english:"This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
    
      script_dependencies("tomcat_error_version.nasl", "tomcat_win_installed.nbin", "apache_tomcat_nix_installed.nbin");
      script_require_keys("installed_sw/Apache Tomcat");
    
      exit(0);
    }
    
    include('tomcat_version.inc');
    
    tomcat_check_version(fixed: '8.5.49', min:'8.5.0', severity:SECURITY_WARNING, granularity_regex: "^8(\.5)?$");
    
  • NASL familyPhotonOS Local Security Checks
    NASL idPHOTONOS_PHSA-2020-3_0-0051_APACHE.NASL
    descriptionAn update of the apache package has been released.
    last seen2020-03-17
    modified2020-01-23
    plugin id133209
    published2020-01-23
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/133209
    titlePhoton OS 3.0: Apache PHSA-2020-3.0-0051
  • NASL familyRed Hat Local Security Checks
    NASL idREDHAT-RHSA-2020-0861.NASL
    descriptionThe remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0861 advisory. - tomcat: XSS in SSI printenv (CVE-2019-0221) - tomcat: local privilege escalation (CVE-2019-12418) - tomcat: session fixation when using FORM authentication (CVE-2019-17563) - tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability (CVE-2020-1938) Note that Nessus has not tested for this issue but has instead relied only on the application
    last seen2020-04-23
    modified2020-03-18
    plugin id134668
    published2020-03-18
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/134668
    titleRHEL 6 / 7 : Red Hat JBoss Web Server 3.1 Service Pack 8 (RHSA-2020:0861)
  • NASL familyUbuntu Local Security Checks
    NASL idUBUNTU_USN-4251-1.NASL
    descriptionIt was discovered that Tomcat incorrectly handled the RMI registry when configured with the JMX Remote Lifecycle Listener. A local attacker could possibly use this issue to obtain credentials and gain complete control over the Tomcat instance. (CVE-2019-12418) It was discovered that Tomcat incorrectly handled FORM authentication. A remote attacker could possibly use this issue to perform a session fixation attack. (CVE-2019-17563). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id133290
    published2020-01-28
    reporterUbuntu Security Notice (C) 2020 Canonical, Inc. / NASL script (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/133290
    titleUbuntu 16.04 LTS : tomcat8 vulnerabilities (USN-4251-1)
  • NASL familySuSE Local Security Checks
    NASL idOPENSUSE-2020-38.NASL
    descriptionThis update for tomcat to version 9.0.30 fixes the following issues : Security issue fixed : - CVE-2019-12418: Fixed a local privilege escalation through by manipulating the RMI registry and performing a man-in-the-middle attack (bsc#1159723). - CVE-2019-17563: Fixed a session fixation attack when using FORM authentication (bsc#1159729). This update was imported from the SUSE:SLE-15-SP1:Update update project.
    last seen2020-06-01
    modified2020-06-02
    plugin id132913
    published2020-01-15
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/132913
    titleopenSUSE Security Update : tomcat (openSUSE-2020-38)
  • NASL familyDebian Local Security Checks
    NASL idDEBIAN_DSA-4680.NASL
    descriptionSeveral vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in HTTP request smuggling, code execution in the AJP connector (disabled by default in Debian) or a man-in-the-middle attack against the JMX interface.
    last seen2020-05-12
    modified2020-05-07
    plugin id136376
    published2020-05-07
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/136376
    titleDebian DSA-4680-1 : tomcat9 - security update
  • NASL familyAmazon Linux Local Security Checks
    NASL idALA_ALAS-2020-1337.NASL
    descriptionWhen Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47, 7.0.0 and 7.0.97 is configured with the JMX Remote Lifecycle Listener, a local attacker without access to the Tomcat process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack to capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and gain complete control over the Tomcat instance.(CVE-2019-12418) When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29, 8.5.0 to 8.5.49 and 7.0.0 to 7.0.98 there was a narrow window where an attacker could perform a session fixation attack. The window was considered too narrow for an exploit to be practical but, erring on the side of caution, this issue has been treated as a security vulnerability.(CVE-2019-17563)
    last seen2020-06-01
    modified2020-06-02
    plugin id133007
    published2020-01-17
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/133007
    titleAmazon Linux AMI : tomcat8 (ALAS-2020-1337)
  • NASL familyPhotonOS Local Security Checks
    NASL idPHOTONOS_PHSA-2020-2_0-0200_APACHE.NASL
    descriptionAn update of the apache package has been released.
    last seen2020-03-17
    modified2020-01-16
    plugin id132988
    published2020-01-16
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/132988
    titlePhoton OS 2.0: Apache PHSA-2020-2.0-0200
  • NASL familyGentoo Local Security Checks
    NASL idGENTOO_GLSA-202003-43.NASL
    descriptionThe remote host is affected by the vulnerability described in GLSA-202003-43 (Apache Tomcat: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in Apache Tomcat. Please review the CVE identifiers referenced below for details. Impact : An attacker could possibly smuggle HTTP requests or execute arbitrary code. Workaround : There is no known workaround at this time.
    last seen2020-03-26
    modified2020-03-20
    plugin id134729
    published2020-03-20
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/134729
    titleGLSA-202003-43 : Apache Tomcat: Multiple vulnerabilities
  • NASL familyHuawei Local Security Checks
    NASL idEULEROS_SA-2020-1182.NASL
    descriptionAccording to the versions of the tomcat packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - When Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47, 7.0.0 and 7.0.97 is configured with the JMX Remote Lifecycle Listener, a local attacker without access to the Tomcat process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack to capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and gain complete control over the Tomcat instance.(CVE-2019-12418) - When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29, 8.5.0 to 8.5.49 and 7.0.0 to 7.0.98 there was a narrow window where an attacker could perform a session fixation attack. The window was considered too narrow for an exploit to be practical but, erring on the side of caution, this issue has been treated as a security vulnerability.(CVE-2019-17563) Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-05-03
    modified2020-02-25
    plugin id134016
    published2020-02-25
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/134016
    titleEulerOS 2.0 SP8 : tomcat (EulerOS-SA-2020-1182)
  • NASL familyRed Hat Local Security Checks
    NASL idREDHAT-RHSA-2020-1520.NASL
    descriptionThe remote Redhat Enterprise Linux 6 / 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1520 advisory. - tomcat: local privilege escalation (CVE-2019-12418) - tomcat: session fixation when using FORM authentication (CVE-2019-17563) - tomcat: Regression in handling of Transfer-Encoding header allows for HTTP request smuggling (CVE-2019-17569) - tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling (CVE-2020-1935) - tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability (CVE-2020-1938) Note that Nessus has not tested for this issue but has instead relied only on the application
    last seen2020-04-30
    modified2020-04-21
    plugin id135773
    published2020-04-21
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/135773
    titleRHEL 6 / 7 / 8 : Red Hat JBoss Web Server 5.3 release (Important) (RHSA-2020:1520)
  • NASL familyHuawei Local Security Checks
    NASL idEULEROS_SA-2020-1136.NASL
    descriptionAccording to the versions of the tomcat packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - When Apache Tomcat 9.0.0.M1 to 9.0.28, 8.5.0 to 8.5.47, 7.0.0 and 7.0.97 is configured with the JMX Remote Lifecycle Listener, a local attacker without access to the Tomcat process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack to capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and gain complete control over the Tomcat instance.(CVE-2019-12418) - When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29, 8.5.0 to 8.5.49 and 7.0.0 to 7.0.98 there was a narrow window where an attacker could perform a session fixation attack. The window was considered too narrow for an exploit to be practical but, erring on the side of caution, this issue has been treated as a security vulnerability.(CVE-2019-17563) Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen2020-05-06
    modified2020-02-24
    plugin id133937
    published2020-02-24
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/133937
    titleEulerOS 2.0 SP5 : tomcat (EulerOS-SA-2020-1136)
  • NASL familyDebian Local Security Checks
    NASL idDEBIAN_DLA-2077.NASL
    descriptionTwo security vulnerabilities have been fixed in the Tomcat servlet and JSP engine. CVE-2019-12418 When Apache Tomcat is configured with the JMX Remote Lifecycle Listener, a local attacker without access to the Tomcat process or configuration files is able to manipulate the RMI registry to perform a man-in-the-middle attack to capture user names and passwords used to access the JMX interface. The attacker can then use these credentials to access the JMX interface and gain complete control over the Tomcat instance. CVE-2019-17563 When using FORM authentication with Apache Tomcat there was a narrow window where an attacker could perform a session fixation attack. The window was considered too narrow for an exploit to be practical but, erring on the side of caution, this issue has been treated as a security vulnerability. For Debian 8
    last seen2020-06-01
    modified2020-06-02
    plugin id133276
    published2020-01-28
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/133276
    titleDebian DLA-2077-1 : tomcat7 security update

Redhat

rpms
  • tomcat-native-0:1.2.23-21.redhat_21.ep7.el6
  • tomcat-native-0:1.2.23-21.redhat_21.ep7.el7
  • tomcat-native-debuginfo-0:1.2.23-21.redhat_21.ep7.el6
  • tomcat-native-debuginfo-0:1.2.23-21.redhat_21.ep7.el7
  • tomcat7-0:7.0.70-38.ep7.el6
  • tomcat7-0:7.0.70-38.ep7.el7
  • tomcat7-admin-webapps-0:7.0.70-38.ep7.el6
  • tomcat7-admin-webapps-0:7.0.70-38.ep7.el7
  • tomcat7-docs-webapp-0:7.0.70-38.ep7.el6
  • tomcat7-docs-webapp-0:7.0.70-38.ep7.el7
  • tomcat7-el-2.2-api-0:7.0.70-38.ep7.el6
  • tomcat7-el-2.2-api-0:7.0.70-38.ep7.el7
  • tomcat7-javadoc-0:7.0.70-38.ep7.el6
  • tomcat7-javadoc-0:7.0.70-38.ep7.el7
  • tomcat7-jsp-2.2-api-0:7.0.70-38.ep7.el6
  • tomcat7-jsp-2.2-api-0:7.0.70-38.ep7.el7
  • tomcat7-jsvc-0:7.0.70-38.ep7.el6
  • tomcat7-jsvc-0:7.0.70-38.ep7.el7
  • tomcat7-lib-0:7.0.70-38.ep7.el6
  • tomcat7-lib-0:7.0.70-38.ep7.el7
  • tomcat7-log4j-0:7.0.70-38.ep7.el6
  • tomcat7-log4j-0:7.0.70-38.ep7.el7
  • tomcat7-selinux-0:7.0.70-38.ep7.el6
  • tomcat7-selinux-0:7.0.70-38.ep7.el7
  • tomcat7-servlet-3.0-api-0:7.0.70-38.ep7.el6
  • tomcat7-servlet-3.0-api-0:7.0.70-38.ep7.el7
  • tomcat7-webapps-0:7.0.70-38.ep7.el6
  • tomcat7-webapps-0:7.0.70-38.ep7.el7
  • tomcat8-0:8.0.36-42.ep7.el6
  • tomcat8-0:8.0.36-42.ep7.el7
  • tomcat8-admin-webapps-0:8.0.36-42.ep7.el6
  • tomcat8-admin-webapps-0:8.0.36-42.ep7.el7
  • tomcat8-docs-webapp-0:8.0.36-42.ep7.el6
  • tomcat8-docs-webapp-0:8.0.36-42.ep7.el7
  • tomcat8-el-2.2-api-0:8.0.36-42.ep7.el6
  • tomcat8-el-2.2-api-0:8.0.36-42.ep7.el7
  • tomcat8-javadoc-0:8.0.36-42.ep7.el6
  • tomcat8-javadoc-0:8.0.36-42.ep7.el7
  • tomcat8-jsp-2.3-api-0:8.0.36-42.ep7.el6
  • tomcat8-jsp-2.3-api-0:8.0.36-42.ep7.el7
  • tomcat8-jsvc-0:8.0.36-42.ep7.el6
  • tomcat8-jsvc-0:8.0.36-42.ep7.el7
  • tomcat8-lib-0:8.0.36-42.ep7.el6
  • tomcat8-lib-0:8.0.36-42.ep7.el7
  • tomcat8-log4j-0:8.0.36-42.ep7.el6
  • tomcat8-log4j-0:8.0.36-42.ep7.el7
  • tomcat8-selinux-0:8.0.36-42.ep7.el6
  • tomcat8-selinux-0:8.0.36-42.ep7.el7
  • tomcat8-servlet-3.1-api-0:8.0.36-42.ep7.el6
  • tomcat8-servlet-3.1-api-0:8.0.36-42.ep7.el7
  • tomcat8-webapps-0:8.0.36-42.ep7.el6
  • tomcat8-webapps-0:8.0.36-42.ep7.el7
  • jws5-tomcat-0:9.0.30-3.redhat_4.1.el6jws
  • jws5-tomcat-0:9.0.30-3.redhat_4.1.el7jws
  • jws5-tomcat-0:9.0.30-3.redhat_4.1.el8jws
  • jws5-tomcat-admin-webapps-0:9.0.30-3.redhat_4.1.el6jws
  • jws5-tomcat-admin-webapps-0:9.0.30-3.redhat_4.1.el7jws
  • jws5-tomcat-admin-webapps-0:9.0.30-3.redhat_4.1.el8jws
  • jws5-tomcat-docs-webapp-0:9.0.30-3.redhat_4.1.el6jws
  • jws5-tomcat-docs-webapp-0:9.0.30-3.redhat_4.1.el7jws
  • jws5-tomcat-docs-webapp-0:9.0.30-3.redhat_4.1.el8jws
  • jws5-tomcat-el-3.0-api-0:9.0.30-3.redhat_4.1.el6jws
  • jws5-tomcat-el-3.0-api-0:9.0.30-3.redhat_4.1.el7jws
  • jws5-tomcat-el-3.0-api-0:9.0.30-3.redhat_4.1.el8jws
  • jws5-tomcat-javadoc-0:9.0.30-3.redhat_4.1.el6jws
  • jws5-tomcat-javadoc-0:9.0.30-3.redhat_4.1.el7jws
  • jws5-tomcat-javadoc-0:9.0.30-3.redhat_4.1.el8jws
  • jws5-tomcat-jsp-2.3-api-0:9.0.30-3.redhat_4.1.el6jws
  • jws5-tomcat-jsp-2.3-api-0:9.0.30-3.redhat_4.1.el7jws
  • jws5-tomcat-jsp-2.3-api-0:9.0.30-3.redhat_4.1.el8jws
  • jws5-tomcat-lib-0:9.0.30-3.redhat_4.1.el6jws
  • jws5-tomcat-lib-0:9.0.30-3.redhat_4.1.el7jws
  • jws5-tomcat-lib-0:9.0.30-3.redhat_4.1.el8jws
  • jws5-tomcat-native-0:1.2.23-4.redhat_4.el6jws
  • jws5-tomcat-native-0:1.2.23-4.redhat_4.el7jws
  • jws5-tomcat-native-0:1.2.23-4.redhat_4.el8jws
  • jws5-tomcat-native-debuginfo-0:1.2.23-4.redhat_4.el6jws
  • jws5-tomcat-native-debuginfo-0:1.2.23-4.redhat_4.el7jws
  • jws5-tomcat-native-debuginfo-0:1.2.23-4.redhat_4.el8jws
  • jws5-tomcat-selinux-0:9.0.30-3.redhat_4.1.el6jws
  • jws5-tomcat-selinux-0:9.0.30-3.redhat_4.1.el7jws
  • jws5-tomcat-selinux-0:9.0.30-3.redhat_4.1.el8jws
  • jws5-tomcat-servlet-4.0-api-0:9.0.30-3.redhat_4.1.el6jws
  • jws5-tomcat-servlet-4.0-api-0:9.0.30-3.redhat_4.1.el7jws
  • jws5-tomcat-servlet-4.0-api-0:9.0.30-3.redhat_4.1.el8jws
  • jws5-tomcat-webapps-0:9.0.30-3.redhat_4.1.el6jws
  • jws5-tomcat-webapps-0:9.0.30-3.redhat_4.1.el7jws
  • jws5-tomcat-webapps-0:9.0.30-3.redhat_4.1.el8jws