CVE-2016-3092 — Vulnetix

CVE-2016-3092 PUBLISHED

EPSS 40.25% · 97.4th percentile

Risk Scores

EPSS Score

40.25%

97.4th percentile

Affected Products

Vendor	Product	Versions
Amazon	tomcat7, tomcat8

Exploit Intelligence

Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Using Struts2 and PowerShell to recreate CVE-2017-5638 OGNL Injection vulnerability. (github-poc)
Using Struts2 and PowerShell to recreate CVE-2017-5638 OGNL Injection vulnerability. (github-poc)

…and 738 more exploits

Timeline

Jun 21, 2016 CVE Published
Oct 2, 2020 PoC Published
Nov 6, 2020 PoC Published
Sep 6, 2021 PoC Published
Feb 4, 2022 EPSS Score
Apr 25, 2023 EPSS Score
Jun 7, 2023 EPSS Score
Sep 1, 2024 EPSS Score
Oct 9, 2024 PoC Published
Dec 12, 2024 PoC Published
Dec 17, 2024 EPSS Score
Mar 21, 2025 EPSS Score

References

ALAS-2016-736: tomcat7, tomcat8 (medium) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›