{"version":"1.0","url":"https://vul.hatenadiary.com/entry/2024/12/23/000000","author_name":"tanigawa","categories":["\u30a2\u30d7\u30ea: Apache Tomcat","\u8106\u5f31\u6027: CVE-2024-56337","CVE-2024-50379"],"height":"190","type":"rich","image_url":null,"description":"\u3010\u6982\u8981\u3011 \u516c\u958b\u65e5 \u767b\u9332\u65e5 CVE\u756a\u53f7 NVD \u30d9\u30f3\u30c0\u30fc CVSS v3 CWE \u8106\u5f31\u6027 KEV \u5099\u8003 2024/12/20 2024/12/20 CVE-2024-56337 NVD Apache 9.8(CISA-ADP) CWE-367 Time-of-check Time-of-use (TOCTOU) \u7af6\u5408\u72b6\u614b - \u3010\u30cb\u30e5\u30fc\u30b9\u3011 \u25c6\u300cApache Tomcat\u300d\u306b\u8106\u5f31\u6027 - \u524d\u56de\u4fee\u6b63\u306e\u4e0d\u5099\u304c\u5224\u660e (Security NEXT, 2024/12/23) https://www.security-next.com/165576 \u3010\u95a2\u9023\u307e\u3068\u3081\u8a18\u4e8b\u3011\u25c6\u5168\u4f53\u307e\u3068\u3081 \u25c6\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3 (\u307e\u3068\u3081)\u2026","width":"100%","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fvul.hatenadiary.com%2Fentry%2F2024%2F12%2F23%2F000000\" title=\"\u300cApache Tomcat\u300d\u306b\u8106\u5f31\u6027 - \u524d\u56de\u4fee\u6b63\u306e\u4e0d\u5099\u304c\u5224\u660e - TT \u8106\u5f31\u6027 Blog\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","published":"2024-12-23 00:00:00","blog_title":"TT \u8106\u5f31\u6027 Blog","provider_name":"Hatena Blog","title":"\u300cApache Tomcat\u300d\u306b\u8106\u5f31\u6027 - \u524d\u56de\u4fee\u6b63\u306e\u4e0d\u5099\u304c\u5224\u660e","blog_url":"https://vul.hatenadiary.com/","provider_url":"https://hatena.blog","author_url":"https://blog.hatena.ne.jp/tanigawa/"}