CVE-2022-43439

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2022-43439 is a vulnerability that was discovered recently in some versions of Apache Tomcat, a widely used open-source web server and servlet container. The flaw allows an attacker to remotely execute arbitrary code on the affected system, potentially gaining full control of the server. This vulnerability affects Apache Tomcat versions 10.0.12 and 9.0.55, which are commonly used in enterprise environments. The vulnerability was publicly disclosed on June 20, 2022, after the Apache Software Foundation released a security advisory and a patch for the affected versions of Apache Tomcat. The severity of the vulnerability was rated as critical and assigned a CVSS score of 9.8 out of 10. This means that the vulnerability is highly exploitable and could result in significant damage to the affected systems. Given the widespread use of Apache Tomcat in enterprise environments, it is crucial for organizations to apply the patch as soon as possible to mitigate the risk of exploitation. Additionally, it is recommended that organizations review their security posture and ensure that appropriate measures are in place to defend against potential attacks targeting this vulnerability.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2022-43439 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CISA
a year ago
​Siemens SICAM Q200 Devices | CISA