CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1858

The default SSL cipher configuration in Apache Tomcat 4.1.28 through 4.1.31, 5.0.0 through 5.0.30, and 5.5.0 through 5.5.17 uses certain insecure ciphers, including the anonymous cipher, which allows remote attackers to obtain sensitive information or have other, unspecified impacts.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.075

EPSS Ranking 91.3%

CVSS Severity

CVSS v2 Score 2.6

References

Products affected by CVE-2007-1858

Apache » Tomcat » Version: 4.1.28

cpe:2.3:a:apache:tomcat:4.1.28
Apache » Tomcat » Version: 4.1.31

cpe:2.3:a:apache:tomcat:4.1.31
Apache » Tomcat » Version: 5.0.0

cpe:2.3:a:apache:tomcat:5.0.0
Apache » Tomcat » Version: 5.0.1

cpe:2.3:a:apache:tomcat:5.0.1
Apache » Tomcat » Version: 5.0.10

cpe:2.3:a:apache:tomcat:5.0.10
Apache » Tomcat » Version: 5.0.11

cpe:2.3:a:apache:tomcat:5.0.11
Apache » Tomcat » Version: 5.0.12

cpe:2.3:a:apache:tomcat:5.0.12
Apache » Tomcat » Version: 5.0.13

cpe:2.3:a:apache:tomcat:5.0.13
Apache » Tomcat » Version: 5.0.14

cpe:2.3:a:apache:tomcat:5.0.14
Apache » Tomcat » Version: 5.0.15

cpe:2.3:a:apache:tomcat:5.0.15
Apache » Tomcat » Version: 5.0.16

cpe:2.3:a:apache:tomcat:5.0.16
Apache » Tomcat » Version: 5.0.17

cpe:2.3:a:apache:tomcat:5.0.17
Apache » Tomcat » Version: 5.0.18

cpe:2.3:a:apache:tomcat:5.0.18
Apache » Tomcat » Version: 5.0.19

cpe:2.3:a:apache:tomcat:5.0.19
Apache » Tomcat » Version: 5.0.2

cpe:2.3:a:apache:tomcat:5.0.2
Apache » Tomcat » Version: 5.0.21

cpe:2.3:a:apache:tomcat:5.0.21
Apache » Tomcat » Version: 5.0.22

cpe:2.3:a:apache:tomcat:5.0.22
Apache » Tomcat » Version: 5.0.23

cpe:2.3:a:apache:tomcat:5.0.23
Apache » Tomcat » Version: 5.0.24

cpe:2.3:a:apache:tomcat:5.0.24
Apache » Tomcat » Version: 5.0.25

cpe:2.3:a:apache:tomcat:5.0.25
Apache » Tomcat » Version: 5.0.26

cpe:2.3:a:apache:tomcat:5.0.26
Apache » Tomcat » Version: 5.0.27

cpe:2.3:a:apache:tomcat:5.0.27
Apache » Tomcat » Version: 5.0.28

cpe:2.3:a:apache:tomcat:5.0.28
Apache » Tomcat » Version: 5.0.29

cpe:2.3:a:apache:tomcat:5.0.29
Apache » Tomcat » Version: 5.0.30

cpe:2.3:a:apache:tomcat:5.0.30
Apache » Tomcat » Version: 5.5.0

cpe:2.3:a:apache:tomcat:5.5.0
Apache » Tomcat » Version: 5.5.1

cpe:2.3:a:apache:tomcat:5.5.1
Apache » Tomcat » Version: 5.5.10

cpe:2.3:a:apache:tomcat:5.5.10
Apache » Tomcat » Version: 5.5.11

cpe:2.3:a:apache:tomcat:5.5.11
Apache » Tomcat » Version: 5.5.12

cpe:2.3:a:apache:tomcat:5.5.12
Apache » Tomcat » Version: 5.5.13

cpe:2.3:a:apache:tomcat:5.5.13
Apache » Tomcat » Version: 5.5.14

cpe:2.3:a:apache:tomcat:5.5.14
Apache » Tomcat » Version: 5.5.15

cpe:2.3:a:apache:tomcat:5.5.15
Apache » Tomcat » Version: 5.5.16

cpe:2.3:a:apache:tomcat:5.5.16
Apache » Tomcat » Version: 5.5.17

cpe:2.3:a:apache:tomcat:5.5.17
Apache » Tomcat » Version: 5.5.2

cpe:2.3:a:apache:tomcat:5.5.2
Apache » Tomcat » Version: 5.5.3

cpe:2.3:a:apache:tomcat:5.5.3
Apache » Tomcat » Version: 5.5.4

cpe:2.3:a:apache:tomcat:5.5.4
Apache » Tomcat » Version: 5.5.5

cpe:2.3:a:apache:tomcat:5.5.5
Apache » Tomcat » Version: 5.5.6

cpe:2.3:a:apache:tomcat:5.5.6
Apache » Tomcat » Version: 5.5.7

cpe:2.3:a:apache:tomcat:5.5.7
Apache » Tomcat » Version: 5.5.8

cpe:2.3:a:apache:tomcat:5.5.8
Apache » Tomcat » Version: 5.5.9

cpe:2.3:a:apache:tomcat:5.5.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1858

Products

Pricing

Contact Us