SA-2023-003 - Apache Tomcat Vulnerabilities in Gue... - Extreme Networks

Summary
Extreme Networks has reviewed and evaluated exposure to the below listed Apache Tomcat related CVEs in Guest and IoT Manager (GIM):

CVE-2019-17569
CVE-2020-1935
CVE-2020-1938
CVE-2019-0199
CVE-2019-10072
CVE-2019-12418
CVE-2019-17563
CVE-2020-9484
CVE-2020-11996
CVE-2020-13934
CVE-2020-13935
CVE-2020-17527
CVE-2021-24122
CVE-2020-9484
CVE-2021-25122
CVE-2021-25329
CVE-2022-29885
CVE-2022-25762
CVE-2022-42252
CVE-2020-13943
CVE-2021-30640
CVE-2021-33037

Products not listed in the Impact Details section have not been evaluated. Furthermore, products that have exceeded any software maintenance time periods are also not evaluated and will not be published. Please consult End of Sale and End of Service Life - Extreme Networks for the EOL notices related to the product under question.

Impact Details

OS/Product	Exposure
Guest and IoT Manager (GIM)	Yes

Repair Recommendations
Guest and IoT Manager (GIM):
Guest and IoT manager will not be repaired.

Please see the full security advisory article here for more details.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Extreme Networks

SA-2023-003 - Apache Tomcat Vulnerabilities in Guest and IoT Manager

SA-2023-047 - Framing Frames: Bypassing Wi-Fi Encryption by Manipulating Transmit Queues (Leaking fr

SA-2023-107 - libcurl cookie injection with none file (CVE-2023-38546)

SA-2023-106 - SOCKS5 heap buffer overflow (CVE-2023-38545)