CS369794 - CVE-2022-29885 reported for Tomcat in Windchill PDMLink

Article - CS369794

CVE-2022-29885 reported for Tomcat in Windchill PDMLink

Modified: 10-Jun-2022

Applies To

Windchill PDMLink 12.0 to 12.1

Description

CVE-2022-29885 reported for Tomcat – The documentation of Apache Tomcat for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network.
According to the contents of the following links from Apache Tomcat, the vulnerability(CVE-2022-29885) occurs for Apache Tomcat 8.5.38 to 8.5.78 and 9.0.13 to 9.0.62
- https://tomcat.apache.org/security-8.html
- https://tomcat.apache.org/security-9.html

This is a printer-friendly version of Article 369794 and may be out of date. For the latest version click CS369794

Knowledge Base Access

Please log-in to:

Read the full content of this article
Discover related content for this topic
Search all of our content sources (Knowledge Base, Help Centers, Community topics..)

Sign In