CVE-2014-0186 — Redhat Enterprise Linux vulnerability

5 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

0.7%

top 27.22%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Enterprise Linux

Timeline

PublishedJun 14

Latest updateMay 17

Description

A certain tomcat7 package for Apache Tomcat 7 in Red Hat Enterprise Linux (RHEL) 7 allows remote attackers to cause a denial of service (CPU consumption) via a crafted request. NOTE: this vulnerability exists because of an unspecified regression.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages0 packages

Also affects: Enterprise Linux 7.0

🔴Vulnerability Details

GHSA

GHSA-4p54-w2cj-pr32: A certain tomcat7 package for Apache Tomcat 7 in Red Hat Enterprise Linux (RHEL) 7 allows remote attackers to cause a denial of service (CPU consumpti↗2022-05-17

▶

📋Vendor Advisories

Red Hat

tomcat7: RHEL-7 regression causing DoS↗2014-06-10

▶

💬Community

Bugzilla

CVE-2014-0186 tomcat7: RHEL-7 regression causing DoS↗2014-04-22

▶

Bugzilla

CVE-2013-0186 ManageIQ EVM: Stored XSS↗2013-01-15

▶