Guest

Preview Tool

Cisco Bug: CSCvt28415 - Apache Tomcat HTTP Request Smuggling vulns 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.9

Last Modified

Oct 08, 2020

Products (1)

  • Cisco Identity Services Engine

Known Affected Releases

2.2(0.470) 2.2(1.184) 2.4(0.357) 2.6(0.156) 2.7(0.356)

Description (partial)

Symptom:
This product includes Third-party Software that is affected by the
vulnerabilities identified by the following Common Vulnerability and
Exposures (CVE) IDs:

CVE-2020-1935 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1935

The affected third-party software component has been upgraded to a version that includes fixes for the vulnerability. Future versions of the product(s) will not be affected by this vulnerability.

Conditions:
Device with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.