CVE-2022-34305

Source
https://nvd.nist.gov/vuln/detail/CVE-2022-34305
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-34305.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-34305
Aliases
Downstream
Related
Published
2022-06-23T11:15:07Z
Modified
2025-08-09T20:01:25Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81 the Form authentication example in the examples web application displayed user provided data without filtering, exposing a XSS vulnerability.

References