Skip to content

[Snyk] Upgrade org.apache.tomcat:tomcat-catalina from 7.0.27 to 7.0.109#8

Open
snyk-bot wants to merge 1 commit intomasterfrom
snyk-upgrade-50746d4cf9ef61d4e96c2524ddf8c513
Open

[Snyk] Upgrade org.apache.tomcat:tomcat-catalina from 7.0.27 to 7.0.109#8
snyk-bot wants to merge 1 commit intomasterfrom
snyk-upgrade-50746d4cf9ef61d4e96c2524ddf8c513

Conversation

@snyk-bot
Copy link
Contributor

@snyk-bot snyk-bot commented Dec 20, 2022

Snyk has created this PR to upgrade org.apache.tomcat:tomcat-catalina from 7.0.27 to 7.0.109.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 58 versions ahead of your current version.
  • The recommended version was released 2 years ago, on 2021-04-22.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Arbitrary File Upload
SNYK-JAVA-ORGAPACHETOMCAT-551994		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 Mature
Arbitrary File Upload
SNYK-JAVA-ORGAPACHETOMCAT-451607		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Denial of Service (DoS)
SNYK-JAVA-ORGAPACHETOMCAT-451530		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Information Exposure
SNYK-JAVA-ORGAPACHETOMCAT-451523		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Arbitrary Code Execution
SNYK-JAVA-ORGAPACHETOMCAT-451514		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 Mature
Denial of Service (DoS)
SNYK-JAVA-ORGAPACHETOMCAT-451507		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Access Restriction Bypass
SNYK-JAVA-ORGAPACHETOMCAT-30950		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Remote Code Execution (RCE)
SNYK-JAVA-ORGAPACHETOMCAT-570036		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 Mature
Arbitrary Code Execution
SNYK-JAVA-ORGAPACHETOMCAT-460343		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 Mature
Access Restriction Bypass
SNYK-JAVA-ORGAPACHETOMCAT-460342		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Information Exposure
SNYK-JAVA-ORGAPACHETOMCAT-451522		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Arbitrary Code Execution
SNYK-JAVA-ORGAPACHETOMCAT-451516		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 Mature
Access Restriction Bypass
SNYK-JAVA-ORGAPACHETOMCAT-31531		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Access Restriction Bypass
SNYK-JAVA-ORGAPACHETOMCAT-30918		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Access Restriction Bypass
SNYK-JAVA-ORGAPACHETOMCAT-30915		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Information Exposure
SNYK-JAVA-ORGAPACHETOMCAT-30913		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Denial of Service (DoS)
SNYK-JAVA-ORGAPACHETOMCAT-30911		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Denial of Service (DoS)
SNYK-JAVA-ORGAPACHETOMCAT-30065		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Remote Code Execution
SNYK-JAVA-ORGAPACHETOMCAT-174342		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 Mature
Remote Code Execution (RCE)
SNYK-JAVA-ORGAPACHETOMCAT-1080636		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Directory Traversal
SNYK-JAVA-ORGAPACHETOMCAT-30949		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Directory Traversal
SNYK-JAVA-ORGAPACHETOMCAT-30948		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Arbitrary File Read
SNYK-JAVA-ORGAPACHETOMCAT-30947		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
HTTP Request Smuggling
SNYK-JAVA-ORGAPACHETOMCAT-30946		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Cache Poisoning
SNYK-JAVA-ORGAPACHETOMCAT-460344		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Open Redirect
SNYK-JAVA-ORGAPACHETOMCAT-459632		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 Mature
Access Restriction Bypass
SNYK-JAVA-ORGAPACHETOMCAT-32115		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Directory Traversal
SNYK-JAVA-ORGAPACHETOMCAT-32110		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Access Restriction Bypass
SNYK-JAVA-ORGAPACHETOMCAT-30917		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Timing Attack
SNYK-JAVA-ORGAPACHETOMCAT-30916		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Information Exposure
SNYK-JAVA-ORGAPACHETOMCAT-30914		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Directory Traversal
SNYK-JAVA-ORGAPACHETOMCAT-30912		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Access Restriction Bypass
SNYK-JAVA-ORGAPACHETOMCAT-30909		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Information Exposure
SNYK-JAVA-ORGAPACHETOMCAT-30908		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Access Restriction Bypass
SNYK-JAVA-ORGAPACHETOMCAT-30901		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Improper Input Validation
SNYK-JAVA-ORGAPACHETOMCAT-1316666		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Session Fixation
SNYK-JAVA-ORGAPACHETOMCAT-538469		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Insecure Defaults
SNYK-JAVA-ORGAPACHETOMCAT-32281		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Information Exposure
SNYK-JAVA-ORGAPACHETOMCAT-31421		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Arbitrary File Read
SNYK-JAVA-ORGAPACHETOMCAT-30910		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Improper Authentication
SNYK-JAVA-ORGAPACHETOMCAT-30906		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Improper Authentication
SNYK-JAVA-ORGAPACHETOMCAT-30905		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Improper Authentication
SNYK-JAVA-ORGAPACHETOMCAT-30904		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Access Restriction Bypass
SNYK-JAVA-ORGAPACHETOMCAT-30903		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Cross-site Request Forgery (CSRF)
SNYK-JAVA-ORGAPACHETOMCAT-30902		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Information Disclosure
SNYK-JAVA-ORGAPACHETOMCAT-1060050		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Information Exposure
SNYK-JAVA-ORGAPACHETOMCAT-30907		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 No Known Exploit
Cross-site Scripting (XSS)
SNYK-JAVA-ORGAPACHETOMCAT-174805		 715/1000
Why? Mature exploit, Has a fix available, CVSS 8.3		 Mature

(*) Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@snyk-bot