CVE-2016-8735 : Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7

Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.

Published 2017-04-06 21:59:00

Updated 2025-03-13 21:00:16

Source Apache Software Foundation

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2016-8735

Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Redhat » Jboss Enterprise Web Server » Version: 3.0.0
cpe:2.3:a:redhat:jboss_enterprise_web_server:3.0.0:*:*:*:*:*:*:*
Matching versions
Apache » Tomcat
Versions from including (>=) 8.0 and before (<) 8.0.39
cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
Matching versions
Apache » Tomcat
Versions from including (>=) 8.5.0 and before (<) 8.5.7
cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
Matching versions
Apache » Tomcat
Versions from including (>=) 7.0.0 and before (<) 7.0.73
cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
Matching versions
Apache » Tomcat
Versions before (<) 6.0.48
cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone1
cpe:2.3:a:apache:tomcat:9.0.0:milestone1:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone10
cpe:2.3:a:apache:tomcat:9.0.0:milestone10:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone11
cpe:2.3:a:apache:tomcat:9.0.0:milestone11:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone2
cpe:2.3:a:apache:tomcat:9.0.0:milestone2:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone3
cpe:2.3:a:apache:tomcat:9.0.0:milestone3:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone4
cpe:2.3:a:apache:tomcat:9.0.0:milestone4:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone5
cpe:2.3:a:apache:tomcat:9.0.0:milestone5:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone6
cpe:2.3:a:apache:tomcat:9.0.0:milestone6:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone7
cpe:2.3:a:apache:tomcat:9.0.0:milestone7:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone8
cpe:2.3:a:apache:tomcat:9.0.0:milestone8:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0 Update Milestone9
cpe:2.3:a:apache:tomcat:9.0.0:milestone9:*:*:*:*:*:*
Matching versions
Apache » Tomcat » Version: 9.0.0
cpe:2.3:a:apache:tomcat:9.0.0:-:*:*:*:*:*:*
Matching versions
Oracle » Mysql Enterprise Monitor
Versions from including (>=) 3.3.0 and up to, including, (<=) 3.3.4.3247
cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*
Matching versions
Oracle » Mysql Enterprise Monitor
Versions from including (>=) 3.4.0 and up to, including, (<=) 3.4.2.4181
cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*
Matching versions
Oracle » Mysql Enterprise Monitor
Versions up to, including, (<=) 3.2.8.2223
cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*
Matching versions
Oracle » Agile Engineering Data Management » Version: 6.2.0
cpe:2.3:a:oracle:agile_engineering_data_management:6.2.0:*:*:*:*:*:*:*
Matching versions
Oracle » Agile Engineering Data Management » Version: 6.1.3
cpe:2.3:a:oracle:agile_engineering_data_management:6.1.3:*:*:*:*:*:*:*
Matching versions
Oracle » Agile Engineering Data Management » Version: 6.2.1.0
cpe:2.3:a:oracle:agile_engineering_data_management:6.2.1.0:*:*:*:*:*:*:*
Matching versions
Oracle » Transportation Management » Version: 6.3.6
cpe:2.3:a:oracle:transportation_management:6.3.6:*:*:*:*:*:*:*
Matching versions
Oracle » Transportation Management » Version: 6.3.7
cpe:2.3:a:oracle:transportation_management:6.3.7:*:*:*:*:*:*:*
Matching versions
Oracle » Transportation Management » Version: 6.3.2
cpe:2.3:a:oracle:transportation_management:6.3.2:*:*:*:*:*:*:*
Matching versions
Oracle » Transportation Management » Version: 6.3.3
cpe:2.3:a:oracle:transportation_management:6.3.3:*:*:*:*:*:*:*
Matching versions
Oracle » Transportation Management » Version: 6.3.4
cpe:2.3:a:oracle:transportation_management:6.3.4:*:*:*:*:*:*:*
Matching versions
Oracle » Transportation Management » Version: 6.3.5
cpe:2.3:a:oracle:transportation_management:6.3.5:*:*:*:*:*:*:*
Matching versions
Oracle » Transportation Management » Version: 6.3.0
cpe:2.3:a:oracle:transportation_management:6.3.0:*:*:*:*:*:*:*
Matching versions
Oracle » Transportation Management » Version: 6.3.1
cpe:2.3:a:oracle:transportation_management:6.3.1:*:*:*:*:*:*:*
Matching versions
Oracle » Hospitality Guest Access » Version: 4.2.0
cpe:2.3:a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*
Matching versions
Oracle » Hospitality Guest Access » Version: 4.2.1
cpe:2.3:a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*
Matching versions
Oracle » Communications Application Session Controller » Version: 3.7.1
cpe:2.3:a:oracle:communications_application_session_controller:3.7.1:*:*:*:*:*:*:*
Matching versions
Oracle » Communications Application Session Controller » Version: 3.8.0
cpe:2.3:a:oracle:communications_application_session_controller:3.8.0:*:*:*:*:*:*:*
Matching versions
Oracle » Retail Convenience And Fuel Pos Software » Version: 2.1.132
cpe:2.3:a:oracle:retail_convenience_and_fuel_pos_software:2.1.132:*:*:*:*:*:*:*
Matching versions
Oracle » Communications Interactive Session Recorder » Version: 6.2
cpe:2.3:a:oracle:communications_interactive_session_recorder:6.2:*:*:*:*:*:*:*
Matching versions
Oracle » Communications Interactive Session Recorder » Version: 6.0
cpe:2.3:a:oracle:communications_interactive_session_recorder:6.0:*:*:*:*:*:*:*
Matching versions
Oracle » Communications Interactive Session Recorder » Version: 6.1
cpe:2.3:a:oracle:communications_interactive_session_recorder:6.1:*:*:*:*:*:*:*
Matching versions
Oracle » Agile Plm » Version: 9.3.5
cpe:2.3:a:oracle:agile_plm:9.3.5:*:*:*:*:*:*:*
Matching versions
Oracle » Agile Plm » Version: 9.3.6
cpe:2.3:a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:*
Matching versions
Oracle » Micros Relate Crm Software » Version: 11.4
cpe:2.3:a:oracle:micros_relate_crm_software:11.4:*:*:*:*:*:*:*
Matching versions
Oracle » Micros Relate Crm Software » Version: 10.8
cpe:2.3:a:oracle:micros_relate_crm_software:10.8:*:*:*:*:*:*:*
Matching versions
Oracle » Communications Instant Messaging Server » Version: 10.0.1
cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1:*:*:*:*:*:*:*
Matching versions
Oracle » Micros Retail Xbri Loss Prevention » Version: 10.0.1
cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.0.1:*:*:*:*:*:*:*
Matching versions
Oracle » Micros Retail Xbri Loss Prevention » Version: 10.5.0
cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.5.0:*:*:*:*:*:*:*
Matching versions
Oracle » Micros Retail Xbri Loss Prevention » Version: 10.6.0
cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.6.0:*:*:*:*:*:*:*
Matching versions
Oracle » Micros Retail Xbri Loss Prevention » Version: 10.7.7
cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.7.7:*:*:*:*:*:*:*
Matching versions
Oracle » Micros Retail Xbri Loss Prevention » Version: 10.8.0
cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.8.0:*:*:*:*:*:*:*
Matching versions
Oracle » Micros Retail Xbri Loss Prevention » Version: 10.8.1
cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.8.1:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 16.04 ESM Edition
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
Matching versions
Netapp » Snap Creator Framework » Version: N/A
cpe:2.3:a:netapp:snap_creator_framework:-:*:*:*:*:*:*:*
Matching versions
Netapp » Oncommand Insight » Version: N/A
cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
Matching versions
Netapp » Oncommand Shift » Version: N/A
cpe:2.3:a:netapp:oncommand_shift:-:*:*:*:*:*:*:*
Matching versions
Netapp » 7-mode Transition Tool » Version: N/A
cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2016-8735

Top countries where our scanners detected CVE-2016-8735

Top open port discovered on systems with this issue 80

IPs affected by CVE-2016-8735 235,054

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2016-8735!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

CVE-2016-8735 is in the CISA Known Exploited Vulnerabilities Catalog

CISA vulnerability name:

Apache Tomcat Remote Code Execution Vulnerability

CISA required action:

Apply updates per vendor instructions.

CISA description:

Apache Tomcat contains an unspecified vulnerability that allows for remote code execution if JmxRemoteLifecycleListener is used and an attacker can reach Java Management Extension (JMX) ports. This CVE exists because this listener wasn't updated for consistency with the Oracle patched issues for CVE

Notes:

https://tomcat.apache.org/security-9.html; https://nvd.nist.gov/vuln/detail/CVE-2016-8735

Added on 2023-05-12 Action due date 2023-06-02

Exploit prediction scoring system (EPSS) score for CVE-2016-8735

EPSS FAQ

94.10%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 100 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2016-8735

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
9.8	CRITICAL	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-02-04
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST	2024-06-27
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

References for CVE-2016-8735

https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3@%3Cdev.tomcat.apache.org%3E

svn commit: r1857582 [19/22] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/ - Pony Mail

CVEs referencing this url
https://security.netapp.com/advisory/ntap-20180607-0001/

November 2016 Apache Tomcat Vulnerabilities in NetApp Products | NetApp Product Security
Third Party Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3Cdev.tomcat.apache.org%3E

svn commit: r1855831 [23/30] - in /tomcat/site/trunk: ./ docs/ xdocs/ - Pony Mail

CVEs referencing this url
https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3Cdev.tomcat.apache.org%3E

Pony Mail!

CVEs referencing this url
http://tomcat.apache.org/security-8.html

Apache Tomcat® - Apache Tomcat 8 vulnerabilities
Release Notes;Vendor Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
http://svn.apache.org/viewvc?view=revision&revision=1767676

[Apache-SVN] Revision 1767676
Patch;Broken Link
https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3Cdev.tomcat.apache.org%3E

svn commit: r1856174 [21/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/ - Pony Mail

CVEs referencing this url
https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
https://access.redhat.com/errata/RHSA-2017:0456

RHSA-2017:0456 - Security Advisory - Red Hat Customer Portal
Third Party Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc@%3Cdev.tomcat.apache.org%3E

Pony Mail!

CVEs referencing this url
https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708@%3Cdev.tomcat.apache.org%3E

svn commit: r1856174 [22/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/ - Pony Mail

CVEs referencing this url
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

Oracle Critical Patch Update - January 2018
Patch;Third Party Advisory

CVEs referencing this url
http://svn.apache.org/viewvc?view=revision&revision=1767644

[Apache-SVN] Revision 1767644
Patch;Broken Link
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

Oracle Critical Patch Update - July 2019
Patch;Third Party Advisory

CVEs referencing this url
http://tomcat.apache.org/security-6.html

Apache Tomcat® - Apache Tomcat 6 vulnerabilities
Release Notes;Vendor Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3Cdev.tomcat.apache.org%3E

Pony Mail!

CVEs referencing this url
http://tomcat.apache.org/security-7.html

Apache Tomcat® - Apache Tomcat 7 vulnerabilities
Release Notes;Vendor Advisory

CVEs referencing this url
http://seclists.org/oss-sec/2016/q4/502

oss-sec: [SECURITY] CVE-2016-8735 Apache Tomcat Remote Code Execution
Mailing List;Mitigation;Third Party Advisory
http://svn.apache.org/viewvc?view=revision&revision=1767656

[Apache-SVN] Revision 1767656
Patch;Broken Link
http://rhn.redhat.com/errata/RHSA-2017-0457.html

RHSA-2017:0457 - Security Advisory - Red Hat Customer Portal
Third Party Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
https://usn.ubuntu.com/4557-1/

USN-4557-1: Tomcat vulnerabilities | Ubuntu security notices | Ubuntu
Third Party Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7@%3Cdev.tomcat.apache.org%3E

Pony Mail!

CVEs referencing this url
https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424@%3Cdev.tomcat.apache.org%3E

svn commit: r1857494 [16/20] - in /tomcat/site/trunk: ./ docs/ xdocs/ - Pony Mail

CVEs referencing this url
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Oracle Critical Patch Update - October 2017
Patch;Third Party Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

Oracle Critical Patch Update - April 2019
Patch;Third Party Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3Cdev.tomcat.apache.org%3E

svn commit: r1857582 [16/22] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/ - Pony Mail

CVEs referencing this url
http://tomcat.apache.org/security-9.html

Apache Tomcat® - Apache Tomcat 9 vulnerabilities
Release Notes;Vendor Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
http://www.securitytracker.com/id/1037331

Apache Tomcat JmxRemoteLifecycleListener Bug Lets Remote Users Execute Arbitrary Code on the Target System - SecurityTracker
Broken Link;Third Party Advisory;VDB Entry

CVEs referencing this url
https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
http://svn.apache.org/viewvc?view=revision&revision=1767684

[Apache-SVN] Revision 1767684
Patch;Broken Link
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

CPU July 2018
Patch;Third Party Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3Cdev.tomcat.apache.org%3E

svn commit: r1857494 [15/20] - in /tomcat/site/trunk: ./ docs/ xdocs/ - Pony Mail

CVEs referencing this url
https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E

svn commit: r1873980 [27/34] - /tomcat/site/trunk/docs/ - Pony Mail

CVEs referencing this url
https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
http://www.securityfocus.com/bid/94463

Apache Tomcat CVE-2016-8735 Remote Code Execution Vulnerability
Broken Link;Third Party Advisory;VDB Entry
https://access.redhat.com/errata/RHSA-2017:0455

RHSA-2017:0455 - Security Advisory - Red Hat Customer Portal
Third Party Advisory

CVEs referencing this url
https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E

svn commit: r1855831 [25/30] - in /tomcat/site/trunk: ./ docs/ xdocs/ - Pony Mail

CVEs referencing this url
https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a%40%3Cdev.tomcat.apache.org%3E

Apache Mail Archives
Mailing List;Patch

CVEs referencing this url
https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a@%3Cdev.tomcat.apache.org%3E

svn commit: r1857494 [17/20] - in /tomcat/site/trunk: ./ docs/ xdocs/ - Pony Mail

CVEs referencing this url
http://www.debian.org/security/2016/dsa-3738

Debian -- Security Information -- DSA-3738-1 tomcat7
Mailing List;Third Party Advisory

CVEs referencing this url