CVE-2017-12616 — Vulnetix

CVE-2017-12616 PUBLISHED

EPSS 90.64% · 99.6th percentile

Risk Scores

EPSS Score

90.64%

99.6th percentile

Affected Products

Vendor	Product	Versions
Amazon	tomcat7

Exploit Intelligence

CIRCL seen: CVE-2017-12616 (circl-sighting)
[announce] 20170919 [SECURITY] CVE-2017-12616 Apache Tomcat Information Disclosure (circl)
[tomcat-dev] 20190413 svn commit: r1857494 [16/20] - in /tomcat/site/trunk: ./ docs/ xdocs/ (circl)
RHSA-2018:0465 (circl)
USN-3665-1 (circl)
100897 (circl)
RHSA-2018:0466 (circl)
https://www.synology.com/support/security/Synology_SA_17_54_Tomcat (circl)
[debian-lts-announce] 20180627 [SECURITY] [DLA 1400-1] tomcat7 security update (circl)
https://security.netapp.com/advisory/ntap-20171018-0001/ (circl)

…and 6 more exploits

Timeline

Sep 19, 2017 CVE Published
Apr 14, 2021 EPSS Score
Feb 4, 2022 EPSS Score
Mar 7, 2023 EPSS Score
Dec 6, 2023 PoC Published
Dec 24, 2023 EPSS Score
Jun 1, 2024 EPSS Score
Aug 11, 2024 EPSS Score
Aug 13, 2024 EPSS Score
Jan 26, 2025 EPSS Score
Mar 17, 2025 EPSS Score
Mar 29, 2025 EPSS Score

References

ALAS-2023-1738: tomcat7 (important) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›