Findings for Container Security, Critical, [TheRedHatter/javagoof:exploits/tomcat-rce/Dockerfile]:Improper Input Validation (#1744) · Issues · Administrator / ticket

Findings for Container Security, Critical, [TheRedHatter/javagoof:exploits/tomcat-rce/Dockerfile]:Improper Input Validation

Created by: armorcodegithubpreprod[bot]

Findings for Container Security, Critical, [TheRedHatter/javagoof:exploits/tomcat-rce/Dockerfile]:Improper Input Validation

Component Details

Exploit Maturity: no-known-exploit
Vulnerable Package: -
Current Version: -
Vulnerable Version(s): >*
Vulnerable Path: >null

NVD Description

Note: Versions mentioned in the description apply to the upstream python3.9 package.

In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This (in some situations) allows attackers to bypass access control that is based on IP addresses.

References

ADVISORY
CONFIRM
MISC
MISC
MISC
MISC
MISC
MISC
MISC
MISC
MISC
MISC
N/A

Origin : null Type : null Image Id : null

Snyk Project Status: Active