Apache Tomcat: Padding Oracle vulnerability in EncryptInterceptor

🗓️ 09 Apr 2026 21:31:29Reported by GitHub Advisory DatabaseType

Padding Oracle in Tomcat EncryptInterceptor with default config; upgrade to 11.0.19, 10.1.53, or 9.0.116.

Reporter	Title	Published	Views	Family All 118
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM DataStax Enterprise	27 May 202617:14	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining Interim Fix for April 2026	30 Apr 202611:49	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Integration Bus for z/OS is vulnerable to multiple vulnerabilities due to Apache Tomcat	14 May 202614:09	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in tomcat-embed-core-11.0.18.jar	17 Jun 202615:30	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to multiple issues in tomcat-embed-core [CVE-2026-24880, CVE-2026-25854, CVE-2026-29129, CVE-2026-29145, CVE-2026-29146, CVE-2026-32990, CVE-2026-34483, CVE-2026-34487, CVE-2026-3450]	18 Jun 202619:57	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Spring, Tomcat, Netty, Picomatch might affect IBM Storage Protect Plus	25 Jun 202618:37	–	ibm
IBM Security Bulletins	Security Bulletin: The Apache Tomcat application server that is shipped with IBM ApplinX is vulnerable to multiple vulnerabilities.	16 Jun 202617:54	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Apache Tomcat affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.	22 Jun 202613:42	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerabilities in tomcat-embed-core-9.0.115.jar	23 Jun 202612:39	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities found in Watson Data Intelligence	24 Jun 202618:29	–	ibm

Vulners

Node

org.apache.tomcat tomcatRange7.0.100–7.0.109maven

org.apache.tomcat tomcat-tribesRange7.0.100–7.0.109maven

org.apache.tomcat tomcatRange8.5.38–8.5.100maven

org.apache.tomcat tomcat-tribesRange8.5.38–8.5.100maven

org.apache.tomcat tomcatRange11.0.0-M1–11.0.18maven

org.apache.tomcat tomcat-tribesRange11.0.0-M1–11.0.18maven

org.apache.tomcat tomcat-tribesRange10.1.50–10.1.53maven

org.apache.tomcat tomcat-tribesRange9.0.13–9.0.116maven

org.apache.tomcat tomcatRange10.1.50–10.1.53maven

org.apache.tomcat tomcatRange9.0.13–9.0.116maven

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-29146
lists	www.lists.apache.org/thread/lzt04z2pb3dc5tk85obn80xygw3z1p0w
openwall	www.openwall.com/lists/oss-security/2026/04/09/24
github	www.github.com/apache/tomcat/commit/0112ed22abfccc3d54e44d91eb08804d0886acd1
github	www.github.com/apache/tomcat/commit/607ebc0fa522bd9e8c05517baa2d179bbd1e659c
github	www.github.com/apache/tomcat/commit/6d955cceca841f2eabf2d6c46b59a8c7e1cd6eaa
tomcat	www.tomcat.apache.org/security-10.html
tomcat	www.tomcat.apache.org/security-11.html
tomcat	www.tomcat.apache.org/security-9.html
herodevs	www.herodevs.com/vulnerability-directory/cve-2026-29146

15 Apr 2026 21:33Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.17.5

EPSS0.03645

SSVC

CWE-209