Uploaded image for project: 'SonarQube'
  1. SonarQube
  2. SONAR-15196

Fix vulnerability with Tomcat when used behind a reverse proxy

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 8.9.2, 9.0.1, 9.1
    • Component/s: None
    • Labels:
      None
    • Edition:
      Community
    • Production Notes:
      None

      Description

      Apache Tomcat 8.5.63 is vulnerable to CVE-2021-33037, leading to the possibility of request smuggling when used with a reverse proxy.

        Attachments

          Activity

            People

            Assignee:
            belen.pruvost Belén Pruvost
            Reporter:
            belen.pruvost Belén Pruvost
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Due:
              Created:
              Updated:
              Resolved: