virus logo FortiClient Vulnerability

Apache Tomcat CVE-2016-8747 Information Disclosure Vulnerability

description-logoDescription

The refactoring to make wider use of ByteBuffer introduced a regression that could cause information to leak between requests on the same connection. When running behind a reverse proxy, this could result in information leakage between users. All HTTP connector variants are affected but HTTP/2 and AJP are not affected.

affected-products-logoAffected Applications

Apache Tomcat

CVE References

CVE-2016-8747

Other References

http://tomcat.apache.org/security.html
ID 43270
Created Jan 17, 2020
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor Apache
Patch manual
Application Apache Tomcat