CVE-2014-0119

🗓️ 31 May 2014 10:00:00Reported by redhatType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 178 Views

Apache Tomcat <8.0.6 XML parser bypass allows file reading

Reporter	Title	Published	Views	Family All 146
IBM Security Bulletins	Security Bulletin: Multiple Apache Tomcat vulnerabilities in QRadar (CVE-2014-0075, CVE-2014-0095, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119)	16 Jun 201821:19	–	ibm
IBM Security Bulletins	Security Bulletin: Tivoli Common Reporting iFixes for multiple Security Vulnerabilities (CVE-2014-3566,CVE-2014-6145,CVE-2014-1568,CVE-2014-4263,CVE-2014-3513,CVE-2014-3567,CVE-2014-3568,CVE-2014-0107,CVE-2014-0075,CVE-2014-0096,CVE-2014-0099,CVE-2014-011	17 Jun 201814:55	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities in Apache Tomcat for WebSphere Application Server Community Edition 2.1.1.6 and 3.0.0.4（CVE-2014-0075, CVE-2014-0096 and CVE-2014-0119）	15 Jun 201807:01	–	ibm
IBM Security Bulletins	Security Bulletin: TADDM affected by multiple vulnerabilities due to Apache Tomcat libraries	26 Mar 202503:33	–	ibm
IBM Security Bulletins	Security Bulletin: Rational Insight - Open Source Tomcat reported in May 2014 X-Force Report	17 Jun 201804:56	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Disconnected Log Collector is vulnerable to using components with known vulnerabilities	16 Jun 202221:33	–	ibm
IBM Security Bulletins	Security Bulletin: Cognos BI Server is affected by the following vulnerabilities: CVE-2014-0107, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119, CVE-2014-0878, CVE-2014-0460	15 Jun 201823:13	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities in Apache Tomcat in Rational DOORS Web Access	1 May 202008:48	–	ibm
IBM Security Bulletins	Security Bulletin: Rational Directory Server and Rational Directory Administrator can be affected by vulnerabilities (CVE-2014-4263, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099 and CVE-2014-0119)	17 Jun 201804:57	–	ibm
IBM Security Bulletins	Security Bulletin: Apache Tomcat Vulnerabilities in IBM UrbanCode Release (CVE-2014-0075,CVE-2014-0095,CVE-2014-0096,CVE-2014-0099,CVE-2014-0119)	17 Jun 201822:31	–	ibm

NVD

Node

apache tomcatMatch8.0.0rc1

apache tomcatMatch8.0.0rc10

apache tomcatMatch8.0.0rc2

apache tomcatMatch8.0.0rc5

apache tomcatMatch8.0.1

apache tomcatMatch8.0.3

apache tomcatMatch8.0.5

Node

apache tomcatRange≤6.0.39

apache tomcatMatch6

apache tomcatMatch6.0

apache tomcatMatch6.0.0

apache tomcatMatch6.0.0alpha

apache tomcatMatch6.0.1

apache tomcatMatch6.0.1alpha

apache tomcatMatch6.0.2

apache tomcatMatch6.0.2alpha

apache tomcatMatch6.0.2beta

apache tomcatMatch6.0.3

apache tomcatMatch6.0.4

apache tomcatMatch6.0.4alpha

apache tomcatMatch6.0.5

apache tomcatMatch6.0.6

apache tomcatMatch6.0.6alpha

apache tomcatMatch6.0.7

apache tomcatMatch6.0.7alpha

apache tomcatMatch6.0.7beta

apache tomcatMatch6.0.8

apache tomcatMatch6.0.8alpha

apache tomcatMatch6.0.9

apache tomcatMatch6.0.9beta

apache tomcatMatch6.0.10

apache tomcatMatch6.0.11

apache tomcatMatch6.0.12

apache tomcatMatch6.0.13

apache tomcatMatch6.0.14

apache tomcatMatch6.0.15

apache tomcatMatch6.0.16

apache tomcatMatch6.0.17

apache tomcatMatch6.0.18

apache tomcatMatch6.0.19

apache tomcatMatch6.0.20

apache tomcatMatch6.0.24

apache tomcatMatch6.0.26

apache tomcatMatch6.0.27

apache tomcatMatch6.0.28

apache tomcatMatch6.0.29

apache tomcatMatch6.0.30

apache tomcatMatch6.0.31

apache tomcatMatch6.0.32

apache tomcatMatch6.0.33

apache tomcatMatch6.0.35

apache tomcatMatch6.0.36

apache tomcatMatch6.0.37

Node

apache tomcatMatch7.0.0

apache tomcatMatch7.0.0beta

apache tomcatMatch7.0.1

apache tomcatMatch7.0.2

apache tomcatMatch7.0.2beta

apache tomcatMatch7.0.3

apache tomcatMatch7.0.4

apache tomcatMatch7.0.4beta

apache tomcatMatch7.0.5

apache tomcatMatch7.0.6

apache tomcatMatch7.0.7

apache tomcatMatch7.0.8

apache tomcatMatch7.0.9

apache tomcatMatch7.0.10

apache tomcatMatch7.0.11

apache tomcatMatch7.0.12

apache tomcatMatch7.0.13

apache tomcatMatch7.0.14

apache tomcatMatch7.0.15

apache tomcatMatch7.0.16

apache tomcatMatch7.0.17

apache tomcatMatch7.0.18

apache tomcatMatch7.0.19

apache tomcatMatch7.0.20

apache tomcatMatch7.0.21

apache tomcatMatch7.0.22

apache tomcatMatch7.0.23

apache tomcatMatch7.0.24

apache tomcatMatch7.0.25

apache tomcatMatch7.0.26

apache tomcatMatch7.0.27

apache tomcatMatch7.0.28

apache tomcatMatch7.0.29

apache tomcatMatch7.0.30

apache tomcatMatch7.0.31

apache tomcatMatch7.0.32

apache tomcatMatch7.0.33

apache tomcatMatch7.0.34

apache tomcatMatch7.0.35

apache tomcatMatch7.0.36

apache tomcatMatch7.0.37

apache tomcatMatch7.0.38

apache tomcatMatch7.0.39

apache tomcatMatch7.0.40

apache tomcatMatch7.0.41

apache tomcatMatch7.0.42

apache tomcatMatch7.0.43

apache tomcatMatch7.0.44

apache tomcatMatch7.0.45

apache tomcatMatch7.0.46

apache tomcatMatch7.0.47

apache tomcatMatch7.0.48

apache tomcatMatch7.0.49

apache tomcatMatch7.0.50

apache tomcatMatch7.0.52

apache tomcatMatch7.0.53

Source	Link
svn	www.svn.apache.org/viewvc
marc	www.marc.info/
svn	www.svn.apache.org/viewvc
lists	www.lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb%40%3Cdev.tomcat.apache.org%3E
lists	www.lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b%40%3Cdev.tomcat.apache.org%3E
svn	www.svn.apache.org/viewvc
mandriva	www.mandriva.com/security/advisories
svn	www.svn.apache.org/viewvc
rhn	www.rhn.redhat.com/errata/RHSA-2015-0675.html
svn	www.svn.apache.org/viewvc

06 May 2026 22:30Current

7.8High risk

Vulners AI Score7.8

CVSS 24.3

EPSS0.04351

CWE-264