Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2011-1475

The HTTP BIO connector in Apache Tomcat 7.0.x before 7.0.12 does not properly handle HTTP pipelining, which allows remote attackers to read responses intended for other clients in opportunistic circumstances by examining the application data in HTTP packets, related to "a mix-up of responses for requests from different users."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.117
EPSS Ranking 93.4%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2011-1475
  • Apache » Tomcat » Version: 7.0.0
    cpe:2.3:a:apache:tomcat:7.0.0
  • Apache » Tomcat » Version: 7.0.1
    cpe:2.3:a:apache:tomcat:7.0.1
  • Apache » Tomcat » Version: 7.0.10
    cpe:2.3:a:apache:tomcat:7.0.10
  • Apache » Tomcat » Version: 7.0.11
    cpe:2.3:a:apache:tomcat:7.0.11
  • Apache » Tomcat » Version: 7.0.2
    cpe:2.3:a:apache:tomcat:7.0.2
  • Apache » Tomcat » Version: 7.0.3
    cpe:2.3:a:apache:tomcat:7.0.3
  • Apache » Tomcat » Version: 7.0.4
    cpe:2.3:a:apache:tomcat:7.0.4
  • Apache » Tomcat » Version: 7.0.5
    cpe:2.3:a:apache:tomcat:7.0.5
  • Apache » Tomcat » Version: 7.0.6
    cpe:2.3:a:apache:tomcat:7.0.6
  • Apache » Tomcat » Version: 7.0.7
    cpe:2.3:a:apache:tomcat:7.0.7
  • Apache » Tomcat » Version: 7.0.8
    cpe:2.3:a:apache:tomcat:7.0.8
  • Apache » Tomcat » Version: 7.0.9
    cpe:2.3:a:apache:tomcat:7.0.9


Products
Pricing
Contact Us

Shodan ® - All rights reserved