Risk Scores
CVSS v2.0
2.5999999046325684
EPSS Score
4.56%
89.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| apache | tomcat | 5.5.27, 5.5.2, 5.5.3 |
| apache | mod_jk | 1.2, 1.2.1, 1.2.6 |
| n/a | n/a | n/a |
Timeline
- Apr 9, 2009 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 28, 2022 EPSS Score
- Jul 10, 2022 EPSS Score
- Sep 1, 2022 EPSS Score
- Oct 23, 2022 EPSS Score
- Feb 4, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 28, 2023 EPSS Score
- Jul 10, 2023 EPSS Score
- Aug 31, 2023 EPSS Score
- Oct 22, 2023 EPSS Score
References
- http://securitytracker.com/id?1022001 technical
- http://secunia.com/advisories/34621 advisory
- ADV-2009-0973 vdb
- http://tomcat.apache.org/connectors-doc/miscellaneous/changelog.html url
- SUSE-SR:2009:018 vendor-advisory
- 34412 vdb
- [oss-security] 20090408 CVE-2008-5519: mod_jk session information leak vulnerability mailing-list
- http://svn.eu.apache.org/viewvc/tomcat/connectors/trunk/jk/native/common/jk_ajp_common.c?r1=702387&r2=702540&pathrev=702540&diff_format=h url
- RHSA-2009:0446 vendor-advisory
- [www-announce] 20090407 [SECURITY] CVE-2008-5519: Apache Tomcat mod_jk information disclosure vulnerability mailing-list
- http://svn.eu.apache.org/viewvc?view=rev&revision=702540 url
- [tomcat-dev] 20090407 [SECURITY] CVE-2008-5519: Apache Tomcat mod_jk information disclosure vulnerability mailing-list
- 20090407 [SECURITY] CVE-2008-5519: Apache Tomcat mod_jk information disclosure vulnerability mailing-list
- https://bugzilla.redhat.com/show_bug.cgi?id=490201 url
- 29283 third-party-advisory
- http://tomcat.apache.org/security-jk.html url
- 35537 third-party-advisory
- DSA-1810 vendor-advisory
- 262468 vendor-advisory
- http://svn.eu.apache.org/viewvc/tomcat/connectors/trunk/jk/xdocs/miscellaneous/changelog.xml?view=markup&pathrev=702540 url
…and 14 more