CVE-2014-0186 — Vulnetix

CVE-2014-0186 PUBLISHED

Es existiert eine nicht näher spezifizierte Denial of Service Schwachstelle in Apache Tomcat. Ein Angreifer kann dies ausnutzen, um viel CPU-Zeit zu verbrauchen, indem er eine speziell gestaltete Anfrage an den Server sendet.

EPSS 0.82% · 74.7th percentile

Risk Scores

EPSS Score

0.82%

74.7th percentile

Affected Products

Vendor	Product	Versions
Oracle	Oracle Solaris 11.1
IBM	IBM Storwize
Oracle	Oracle Solaris 10
IBM	IBM SAN Volume Controller
Red Hat	Red Hat Enterprise Linux

Exploit Intelligence

RHSA-2014:0686 (circl)
https://bugzilla.redhat.com/show_bug.cgi?id=1089884 (circl)
108060 (circl)
https://security-tracker.debian.org/tracker/CVE-2014-0186 (circl)

Timeline

Jun 10, 2014 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 26, 2023 CVE Updated
Apr 2, 2023 EPSS Score
May 25, 2023 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2014/wid-sec-w-2023-0754.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0754 advisory
https://www.ibm.com/support/pages/node/865974 advisory
https://rhn.redhat.com/errata/RHSA-2014-0686.html advisory
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_apache_tomcat4 advisory
https://www.debian.org/security/2016/dsa-3530 advisory

Open in Interactive Console →