Uploaded image for project: 'TomEE'
  1. TomEE
  2. TOMEE-4229

CVE-2023-34981 in Apache TomEE 8.0.15

    XMLWordPrintableJSON

Details

    • Dependency upgrade
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 8.0.15
    • 8.0.16
    • TomEE Core Server

    Description

      Hello,

      We have seen that Apache Tomcat version 9.0.74 has a high vulnerability (CVE-2023-34981).

      Looking Apache TomEE version 8.0.15 it has a Apache Tomcat 9.0.74 inside.

      Is this version of TomEE affected by the CVE-2023-34981 vulnerability?

      It is planned to solve this CVE in TomEE 8.0.X?

      Thank you very much.

      Best regards.

      References:

       

      Attachments

        Issue Links

          is cloned by

          Dependency upgrade - Upgrading a dependency to a newer version TOMEE-4230 Backport fix for CVE-2023-34981

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              rzo1 Richard Zowalla
              guzmancastanedo Guzman Castanedo
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: