Amazon Linux 2023:tomcat9、tomcat9-admin-webapps、tomcat9-el-3.0-api (ALAS2023-2025-911)

critical Nessus Plugin ID 233719

版本 1.4

Jul 9, 2026, 1:09 PM

  • CVE (set "CVE" coverage to "CVE-2025-24813,CVE-2026-55957")
  • CVSS metrics ("Cvssv4 score" set to 9.2)
  • CVSS metrics ("Cvssv4 threat vector" set to "CVSS:4.0/E:A")
  • CVSS metrics ("Cvssv4 vector" set to "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N")
  • Detection (updated detection logic)
  • Exploit attributes ("Exploit framework metasploit" changed from "True" to none)
  • Plugin metadata

Plugin Feed: 202607091309

版本 1.3

Jan 21, 2026, 5:00 PM

  • IAVM reference

Plugin Feed: 202601211700

版本 1.2

Oct 30, 2025, 2:57 PM

  • Exploit attributes ("Exploit framework metasploit" set to "True")
  • Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")

Plugin Feed: 202510301457

版本 1.1

Apr 2, 2025, 9:22 AM

  • New

Plugin Feed: 202504020922

* Changelogs are generally available for changes made after Nov 1, 2022