Apache Tomcat vulnerabilities (Tier1/2 Focus) Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-17-251 Final 1 1 2017-10-24T00:00:00 Current version 2017-10-24T00:00:00 2017-10-24T00:00:00 Multiple Remote Code Execution (RCE) vulnerabilities (CVE-2017-12615, CVE-2017-12617) are affecting Apache Tomcat. Denial of service The following Fortinet products are NOT affected:FortiOSFortiAPFortiSwitchFortiAnalyzerFortiMailFortiManagerFortiWebNone of the products above are using Apache Tomcat. https://fortiguard.fortinet.com/psirt/FG-IR-17-251 Apache Tomcat vulnerabilities (Tier1/2 Focus) http://tomcat.apache.org/security.html http://tomcat.apache.org/security.html CVE-2017-12615 CVE-2017-12617 0 https://fortiguard.fortinet.com/psirt/FG-IR-17-251 Apache Tomcat vulnerabilities (Tier1/2 Focus) Reference> http://tomcat.apache.org/security.html http://tomcat.apache.org/security.html