The default SSL cipher configuration in Apache Tomcat 4.1.28 up to and including 4.1.31, 5.0.0 up to and including 5.0.30, and 5.5.0 up to and including 5.5.17 uses certain insecure ciphers, including the anonymous cipher, which allows remote malicious users to obtain sensitive information or have other, unspecified impacts.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache tomcat 4.1.28 |
||
apache tomcat 4.1.31 |
||
apache tomcat 5.0.0 |
||
apache tomcat 5.0.1 |
||
apache tomcat 5.0.2 |
||
apache tomcat 5.0.10 |
||
apache tomcat 5.0.11 |
||
apache tomcat 5.0.12 |
||
apache tomcat 5.0.13 |
||
apache tomcat 5.0.14 |
||
apache tomcat 5.0.15 |
||
apache tomcat 5.0.16 |
||
apache tomcat 5.0.17 |
||
apache tomcat 5.0.18 |
||
apache tomcat 5.0.19 |
||
apache tomcat 5.0.21 |
||
apache tomcat 5.0.22 |
||
apache tomcat 5.0.23 |
||
apache tomcat 5.0.24 |
||
apache tomcat 5.0.25 |
||
apache tomcat 5.0.26 |
||
apache tomcat 5.0.27 |
||
apache tomcat 5.0.28 |
||
apache tomcat 5.0.29 |
||
apache tomcat 5.0.30 |
||
apache tomcat 5.5.0 |
||
apache tomcat 5.5.1 |
||
apache tomcat 5.5.2 |
||
apache tomcat 5.5.3 |
||
apache tomcat 5.5.4 |
||
apache tomcat 5.5.5 |
||
apache tomcat 5.5.6 |
||
apache tomcat 5.5.7 |
||
apache tomcat 5.5.8 |
||
apache tomcat 5.5.9 |
||
apache tomcat 5.5.10 |
||
apache tomcat 5.5.11 |
||
apache tomcat 5.5.12 |
||
apache tomcat 5.5.13 |
||
apache tomcat 5.5.14 |
||
apache tomcat 5.5.15 |
||
apache tomcat 5.5.16 |
||
apache tomcat 5.5.17 |