CVE-2014-0075

🗓️ 31 May 2014 10:00:00Reported by redhatType

Integer overflow in parseChunkHeader function in Apache Tomcat allows remote attackers to cause denial of service via malformed chunk size in chunked transfer coding

Reporter	Title	Published	Views	Family All 167
IBM Security Bulletins	Security Bulletin: Multiple Apache Tomcat vulnerabilities in QRadar (CVE-2014-0075, CVE-2014-0095, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119)	16 Jun 201821:19	–	ibm
IBM Security Bulletins	Security Bulletin: Tivoli Common Reporting iFixes for multiple Security Vulnerabilities (CVE-2014-3566,CVE-2014-6145,CVE-2014-1568,CVE-2014-4263,CVE-2014-3513,CVE-2014-3567,CVE-2014-3568,CVE-2014-0107,CVE-2014-0075,CVE-2014-0096,CVE-2014-0099,CVE-2014-011	17 Jun 201814:55	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities in Apache Tomcat for WebSphere Application Server Community Edition 2.1.1.6 and 3.0.0.4（CVE-2014-0075, CVE-2014-0096 and CVE-2014-0119）	15 Jun 201807:01	–	ibm
IBM Security Bulletins	Security Bulletin: Apache Tomcat vulnerabilities on IBM SAN Volume Controller and Storwize Family (CVE-2013-4286 CVE-2013-4322 CVE-2014-0075 CVE-2014-0099)	29 Mar 202301:48	–	ibm
IBM Security Bulletins	Security Bulletin: TADDM affected by multiple vulnerabilities due to Apache Tomcat libraries	26 Mar 202503:33	–	ibm
IBM Security Bulletins	Security Bulletin: Rational Insight - Open Source Tomcat reported in May 2014 X-Force Report	17 Jun 201804:56	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Disconnected Log Collector is vulnerable to using components with known vulnerabilities	16 Jun 202221:33	–	ibm
IBM Security Bulletins	Security Bulletin: Cognos BI Server is affected by the following vulnerabilities: CVE-2014-0107, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119, CVE-2014-0878, CVE-2014-0460	15 Jun 201823:13	–	ibm
IBM Security Bulletins	Security Bulletin: Websphere Message Broker and IBM Integration Bus are affected by Open Source Tomcat	23 Mar 202020:41	–	ibm
IBM Security Bulletins	Security Bulletin: Apache Tomcat vulnerabilities on IBM SAN Volume Controller and Storwize Family (CVE-2013-4286 CVE-2013-4332 CVE-2014-0075 CVE-2014-0099)	20 Aug 202200:54	–	ibm

NVD

Node

apache tomcatMatch7.0.0

apache tomcatMatch7.0.0beta

apache tomcatMatch7.0.1

apache tomcatMatch7.0.2

apache tomcatMatch7.0.2beta

apache tomcatMatch7.0.3

apache tomcatMatch7.0.4

apache tomcatMatch7.0.4beta

apache tomcatMatch7.0.5

apache tomcatMatch7.0.6

apache tomcatMatch7.0.7

apache tomcatMatch7.0.8

apache tomcatMatch7.0.9

apache tomcatMatch7.0.10

apache tomcatMatch7.0.11

apache tomcatMatch7.0.12

apache tomcatMatch7.0.13

apache tomcatMatch7.0.14

apache tomcatMatch7.0.15

apache tomcatMatch7.0.16

apache tomcatMatch7.0.17

apache tomcatMatch7.0.18

apache tomcatMatch7.0.19

apache tomcatMatch7.0.20

apache tomcatMatch7.0.21

apache tomcatMatch7.0.22

apache tomcatMatch7.0.23

apache tomcatMatch7.0.24

apache tomcatMatch7.0.25

apache tomcatMatch7.0.26

apache tomcatMatch7.0.27

apache tomcatMatch7.0.28

apache tomcatMatch7.0.29

apache tomcatMatch7.0.30

apache tomcatMatch7.0.31

apache tomcatMatch7.0.32

apache tomcatMatch7.0.33

apache tomcatMatch7.0.34

apache tomcatMatch7.0.35

apache tomcatMatch7.0.36

apache tomcatMatch7.0.37

apache tomcatMatch7.0.38

apache tomcatMatch7.0.39

apache tomcatMatch7.0.40

apache tomcatMatch7.0.41

apache tomcatMatch7.0.42

apache tomcatMatch7.0.43

apache tomcatMatch7.0.44

apache tomcatMatch7.0.45

apache tomcatMatch7.0.46

apache tomcatMatch7.0.47

apache tomcatMatch7.0.48

apache tomcatMatch7.0.49

apache tomcatMatch7.0.50

apache tomcatMatch7.0.52

Node

apache tomcatMatch8.0.0rc1

apache tomcatMatch8.0.0rc10

apache tomcatMatch8.0.0rc2

apache tomcatMatch8.0.0rc5

apache tomcatMatch8.0.1

apache tomcatMatch8.0.3

Node

apache tomcatRange≤6.0.39

apache tomcatMatch6

apache tomcatMatch6.0

apache tomcatMatch6.0.0

apache tomcatMatch6.0.0alpha

apache tomcatMatch6.0.1

apache tomcatMatch6.0.1alpha

apache tomcatMatch6.0.2

apache tomcatMatch6.0.2alpha

apache tomcatMatch6.0.2beta

apache tomcatMatch6.0.3

apache tomcatMatch6.0.4

apache tomcatMatch6.0.4alpha

apache tomcatMatch6.0.5

apache tomcatMatch6.0.6

apache tomcatMatch6.0.6alpha

apache tomcatMatch6.0.7

apache tomcatMatch6.0.7alpha

apache tomcatMatch6.0.7beta

apache tomcatMatch6.0.8

apache tomcatMatch6.0.8alpha

apache tomcatMatch6.0.9

apache tomcatMatch6.0.9beta

apache tomcatMatch6.0.10

apache tomcatMatch6.0.11

apache tomcatMatch6.0.12

apache tomcatMatch6.0.13

apache tomcatMatch6.0.14

apache tomcatMatch6.0.15

apache tomcatMatch6.0.16

apache tomcatMatch6.0.17

apache tomcatMatch6.0.18

apache tomcatMatch6.0.19

apache tomcatMatch6.0.20

apache tomcatMatch6.0.24

apache tomcatMatch6.0.26

apache tomcatMatch6.0.27

apache tomcatMatch6.0.28

apache tomcatMatch6.0.29

apache tomcatMatch6.0.30

apache tomcatMatch6.0.31

apache tomcatMatch6.0.32

apache tomcatMatch6.0.33

apache tomcatMatch6.0.35

apache tomcatMatch6.0.36

apache tomcatMatch6.0.37

Source	Link
secunia	www.secunia.com/advisories/59835
novell	www.novell.com/support/kb/doc.php
svn	www.svn.apache.org/viewvc
marc	www.marc.info/
secunia	www.secunia.com/advisories/60793
lists	www.lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb%40%3Cdev.tomcat.apache.org%3E
lists	www.lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b%40%3Cdev.tomcat.apache.org%3E
mandriva	www.mandriva.com/security/advisories
linux	www.linux.oracle.com/errata/ELSA-2014-0865.html
rhn	www.rhn.redhat.com/errata/RHSA-2015-0675.html

06 May 2026 22:30Current

7.7High risk

Vulners AI Score7.7

CVSS 25

EPSS0.46749

CWE-189