Published: 15/08/2011 Updated: 13/02/2023
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

Apache Tomcat 7.0.x prior to 7.0.17 permits web applications to replace an XML parser used for other web applications, which allows local users to read or modify the (1) web.xml, (2) context.xml, or (3) tld files of arbitrary web applications via a crafted application that is loaded earlier than the target application. NOTE: this vulnerability exists because of a CVE-2009-0783 regression.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache tomcat 7.0.12

apache tomcat 7.0.8

apache tomcat 7.0.1

apache tomcat 7.0.2

apache tomcat 7.0.5

apache tomcat 7.0.0

apache tomcat 7.0.6

apache tomcat 7.0.14

apache tomcat 7.0.11

apache tomcat 7.0.7

apache tomcat 7.0.13

apache tomcat 7.0.10

apache tomcat 7.0.9

apache tomcat 7.0.4

apache tomcat 7.0.3