CVE-2022-43439

Vulnerability updated 5 months ago (2024-05-04T17:41:28.509Z)
Download STIX
Preview STIX
CVE-2022-43439 is a vulnerability that was discovered recently in some versions of Apache Tomcat, a widely used open-source web server and servlet container. The flaw allows an attacker to remotely execute arbitrary code on the affected system, potentially gaining full control of the server. This vulnerability affects Apache Tomcat versions 10.0.12 and 9.0.55, which are commonly used in enterprise environments. The vulnerability was publicly disclosed on June 20, 2022, after the Apache Software Foundation released a security advisory and a patch for the affected versions of Apache Tomcat. The severity of the vulnerability was rated as critical and assigned a CVSS score of 9.8 out of 10. This means that the vulnerability is highly exploitable and could result in significant damage to the affected systems. Given the widespread use of Apache Tomcat in enterprise environments, it is crucial for organizations to apply the patch as soon as possible to mitigate the risk of exploitation. Additionally, it is recommended that organizations review their security posture and ensure that appropriate measures are in place to defend against potential attacks targeting this vulnerability.
Description last updated: 2023-06-23T12:47:41.797Z
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the CVE-2022-43439 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
CISA
a year ago