ALAS-2018-959
ALAS · AL1Low2018-02-20
ALAS-2018-959: tomcat8 (low)
CVEs:CVE-2017-15706
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat8 | affected | Amazon | tomcat8 | — |
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity).
ALAS-2018-959: tomcat8 (low)
CVEs:CVE-2017-15706
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat8 | affected | Amazon | tomcat8 | — |
ALAS-2018-958: clamav (medium)
CVEs:CVE-2017-12374CVE-2017-12375CVE-2017-12376CVE-2017-12377CVE-2017-12378CVE-2017-12379CVE-2017-12380CVE-2017-6418CVE-2017-6419CVE-2017-6420
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| clamav | affected | Amazon | clamav | — |
ALAS-2018-957: quagga (important)
CVEs:CVE-2018-5379CVE-2018-5380CVE-2018-5381
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| quagga | affected | Amazon | quagga | — |
ALAS-2018-956: kernel (important)
CVEs:CVE-2017-1000405CVE-2017-17741CVE-2017-5753CVE-2018-1000028CVE-2018-5344CVE-2018-5750
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| kernel | affected | Amazon | kernel | — |
ALAS-2018-955: 389-ds-base (important)
CVEs:CVE-2017-15134
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| 389-ds-base | affected | Amazon | 389-ds-base | — |
ALAS-2018-954: bind (important)
CVEs:CVE-2017-3145
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| bind | affected | Amazon | bind | — |
ALAS-2018-951: curl (important)
CVEs:CVE-2018-1000005CVE-2018-1000007
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| curl | affected | Amazon | curl | — |
ALAS-2018-950: transmission (medium)
CVEs:CVE-2018-5702
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| transmission | affected | Amazon | transmission | — |
ALAS-2018-949: java-1.8.0-openjdk (important)
CVEs:CVE-2018-2579CVE-2018-2582CVE-2018-2588CVE-2018-2599CVE-2018-2602CVE-2018-2603CVE-2018-2618CVE-2018-2629CVE-2018-2633CVE-2018-2634CVE-2018-2637CVE-2018-2641CVE-2018-2663CVE-2018-2677CVE-2018-2678
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.8.0-openjdk | affected | Amazon | java-1.8.0-openjdk | — |
ALAS-2018-948: git (low)
CVEs:CVE-2017-15298
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| git | affected | Amazon | git | — |
ALAS-2018-947: tomcat7 (low)
CVEs:CVE-2017-15706
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat7 | affected | Amazon | tomcat7 | — |
ALAS-2018-946: php56, php70, php71 (medium)
CVEs:CVE-2018-5711CVE-2018-5712
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| php56, php70, php71 | affected | Amazon | php56, php70, php71 | — |
ALAS-2018-945: python27 (medium)
CVEs:CVE-2017-1000158
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python27 | affected | Amazon | python27 | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.