Findings for Container Security, Critical, [TheRedHatter/javagoof:exploits/tomcat-rce/Dockerfile]:Improper Input Validation
Created by: armorcodegithubpreprod[bot]
Findings for Container Security, Critical, [TheRedHatter/javagoof:exploits/tomcat-rce/Dockerfile]:Improper Input Validation
Component Details
- Exploit Maturity: no-known-exploit
- Vulnerable Package: -
- Current Version: -
- Vulnerable Version(s): >*
- Vulnerable Path: >null
NVD Description
Note:
Versions mentioned in the description apply to the upstream python3.9
package.
In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This (in some situations) allows attackers to bypass access control that is based on IP addresses.
References
Origin : null Type : null Image Id : null
Snyk Project Status: Active