Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2010-3718

Apache Tomcat 7.0.0 through 7.0.3, 6.0.x, and 5.5.x, when running within a SecurityManager, does not make the ServletContext attribute read-only, which allows local web applications to read or write files outside of the intended working directory, as demonstrated using a directory traversal attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 48.1%
CVSS Severity
CVSS v2 Score 1.2
References
Products affected by CVE-2010-3718
  • Apache » Tomcat » Version: 5.5.0
    cpe:2.3:a:apache:tomcat:5.5.0
  • Apache » Tomcat » Version: 5.5.1
    cpe:2.3:a:apache:tomcat:5.5.1
  • Apache » Tomcat » Version: 5.5.10
    cpe:2.3:a:apache:tomcat:5.5.10
  • Apache » Tomcat » Version: 5.5.11
    cpe:2.3:a:apache:tomcat:5.5.11
  • Apache » Tomcat » Version: 5.5.12
    cpe:2.3:a:apache:tomcat:5.5.12
  • Apache » Tomcat » Version: 5.5.13
    cpe:2.3:a:apache:tomcat:5.5.13
  • Apache » Tomcat » Version: 5.5.14
    cpe:2.3:a:apache:tomcat:5.5.14
  • Apache » Tomcat » Version: 5.5.15
    cpe:2.3:a:apache:tomcat:5.5.15
  • Apache » Tomcat » Version: 5.5.16
    cpe:2.3:a:apache:tomcat:5.5.16
  • Apache » Tomcat » Version: 5.5.17
    cpe:2.3:a:apache:tomcat:5.5.17
  • Apache » Tomcat » Version: 5.5.18
    cpe:2.3:a:apache:tomcat:5.5.18
  • Apache » Tomcat » Version: 5.5.19
    cpe:2.3:a:apache:tomcat:5.5.19
  • Apache » Tomcat » Version: 5.5.2
    cpe:2.3:a:apache:tomcat:5.5.2
  • Apache » Tomcat » Version: 5.5.20
    cpe:2.3:a:apache:tomcat:5.5.20
  • Apache » Tomcat » Version: 5.5.21
    cpe:2.3:a:apache:tomcat:5.5.21
  • Apache » Tomcat » Version: 5.5.22
    cpe:2.3:a:apache:tomcat:5.5.22
  • Apache » Tomcat » Version: 5.5.23
    cpe:2.3:a:apache:tomcat:5.5.23
  • Apache » Tomcat » Version: 5.5.24
    cpe:2.3:a:apache:tomcat:5.5.24
  • Apache » Tomcat » Version: 5.5.25
    cpe:2.3:a:apache:tomcat:5.5.25
  • Apache » Tomcat » Version: 5.5.26
    cpe:2.3:a:apache:tomcat:5.5.26
  • Apache » Tomcat » Version: 5.5.27
    cpe:2.3:a:apache:tomcat:5.5.27
  • Apache » Tomcat » Version: 5.5.28
    cpe:2.3:a:apache:tomcat:5.5.28
  • Apache » Tomcat » Version: 5.5.29
    cpe:2.3:a:apache:tomcat:5.5.29
  • Apache » Tomcat » Version: 5.5.3
    cpe:2.3:a:apache:tomcat:5.5.3
  • Apache » Tomcat » Version: 5.5.30
    cpe:2.3:a:apache:tomcat:5.5.30
  • Apache » Tomcat » Version: 5.5.32
    cpe:2.3:a:apache:tomcat:5.5.32
  • Apache » Tomcat » Version: 5.5.4
    cpe:2.3:a:apache:tomcat:5.5.4
  • Apache » Tomcat » Version: 5.5.5
    cpe:2.3:a:apache:tomcat:5.5.5
  • Apache » Tomcat » Version: 5.5.6
    cpe:2.3:a:apache:tomcat:5.5.6
  • Apache » Tomcat » Version: 5.5.7
    cpe:2.3:a:apache:tomcat:5.5.7
  • Apache » Tomcat » Version: 5.5.8
    cpe:2.3:a:apache:tomcat:5.5.8
  • Apache » Tomcat » Version: 5.5.9
    cpe:2.3:a:apache:tomcat:5.5.9
  • Apache » Tomcat » Version: 6.0
    cpe:2.3:a:apache:tomcat:6.0
  • Apache » Tomcat » Version: 6.0.0
    cpe:2.3:a:apache:tomcat:6.0.0
  • Apache » Tomcat » Version: 6.0.1
    cpe:2.3:a:apache:tomcat:6.0.1
  • Apache » Tomcat » Version: 6.0.10
    cpe:2.3:a:apache:tomcat:6.0.10
  • Apache » Tomcat » Version: 6.0.11
    cpe:2.3:a:apache:tomcat:6.0.11
  • Apache » Tomcat » Version: 6.0.12
    cpe:2.3:a:apache:tomcat:6.0.12
  • Apache » Tomcat » Version: 6.0.13
    cpe:2.3:a:apache:tomcat:6.0.13
  • Apache » Tomcat » Version: 6.0.14
    cpe:2.3:a:apache:tomcat:6.0.14
  • Apache » Tomcat » Version: 6.0.15
    cpe:2.3:a:apache:tomcat:6.0.15
  • Apache » Tomcat » Version: 6.0.16
    cpe:2.3:a:apache:tomcat:6.0.16
  • Apache » Tomcat » Version: 6.0.17
    cpe:2.3:a:apache:tomcat:6.0.17
  • Apache » Tomcat » Version: 6.0.18
    cpe:2.3:a:apache:tomcat:6.0.18
  • Apache » Tomcat » Version: 6.0.19
    cpe:2.3:a:apache:tomcat:6.0.19
  • Apache » Tomcat » Version: 6.0.2
    cpe:2.3:a:apache:tomcat:6.0.2
  • Apache » Tomcat » Version: 6.0.20
    cpe:2.3:a:apache:tomcat:6.0.20
  • Apache » Tomcat » Version: 6.0.24
    cpe:2.3:a:apache:tomcat:6.0.24
  • Apache » Tomcat » Version: 6.0.26
    cpe:2.3:a:apache:tomcat:6.0.26
  • Apache » Tomcat » Version: 6.0.27
    cpe:2.3:a:apache:tomcat:6.0.27
  • Apache » Tomcat » Version: 6.0.28
    cpe:2.3:a:apache:tomcat:6.0.28
  • Apache » Tomcat » Version: 6.0.29
    cpe:2.3:a:apache:tomcat:6.0.29
  • Apache » Tomcat » Version: 6.0.3
    cpe:2.3:a:apache:tomcat:6.0.3
  • Apache » Tomcat » Version: 6.0.4
    cpe:2.3:a:apache:tomcat:6.0.4
  • Apache » Tomcat » Version: 6.0.5
    cpe:2.3:a:apache:tomcat:6.0.5
  • Apache » Tomcat » Version: 6.0.6
    cpe:2.3:a:apache:tomcat:6.0.6
  • Apache » Tomcat » Version: 6.0.7
    cpe:2.3:a:apache:tomcat:6.0.7
  • Apache » Tomcat » Version: 6.0.8
    cpe:2.3:a:apache:tomcat:6.0.8
  • Apache » Tomcat » Version: 6.0.9
    cpe:2.3:a:apache:tomcat:6.0.9
  • Apache » Tomcat » Version: 7.0.0
    cpe:2.3:a:apache:tomcat:7.0.0
  • Apache » Tomcat » Version: 7.0.1
    cpe:2.3:a:apache:tomcat:7.0.1
  • Apache » Tomcat » Version: 7.0.2
    cpe:2.3:a:apache:tomcat:7.0.2
  • Apache » Tomcat » Version: 7.0.3
    cpe:2.3:a:apache:tomcat:7.0.3


Products
Pricing
Contact Us

Shodan ® - All rights reserved