Lucene search
K

8 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/03/06 4:4 p.m.13 views

Security Bulletin: IBM Engineering Requirements Management DOORS and DOORS Web Access is affected by multiple vulnerabilities

Summary This release addresses multiple security vulnerabilities across various components of IBM Engineering Requirements Management DOORS and DOORS Web Access product. Many vulnerabilities are rated Critical CVSS ≥ 9.0, including a Tomcat rewrite rule bypass CVE-2025-31651, Tomcat Improper...

9.8CVSS6.5AI score0.11032EPSS
Exploits2Affected Software2
Tenable Nessus
Tenable Nessus
added 2026/02/16 12:0 a.m.8 views

RHEL 8 : pki-deps:10.6 (RHSA-2026:2725)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2725 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: tomcat: Apache...

9.8CVSS5.7AI score0.66535EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2026/02/16 12:0 a.m.9 views

RHEL 8 : pki-deps:10.6 (RHSA-2026:2724)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2724 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: tomcat: Apache...

9.8CVSS5.7AI score0.66535EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.9 views

RHEL 9 : pki-servlet-engine (RHSA-2026:0292)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0292 advisory. Tomcat is the servlet engine that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. T...

9.8CVSS8AI score0.66535EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2025/12/15 12:0 a.m.15 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-7.1.1.1)

The version of AOS installed on the remote host is prior to 7.1.1.1. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-7.1.1.1 advisory. - Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. For a subset of unlikely...

9.8CVSS7AI score0.66933EPSS
Exploits9References14
Tenable Nessus
Tenable Nessus
added 2025/12/12 12:0 a.m.8 views

RockyLinux 10 : tomcat9 (RLSA-2025:23052)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:23052 advisory. tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve CVE-2025-31651 tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal vi...

9.8CVSS7.9AI score0.66535EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2025/10/06 12:0 a.m.5 views

RockyLinux 10 : tomcat9 (RLSA-2025:14178)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:14178 advisory. tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-49125...

7.5CVSS7.6AI score0.63258EPSS
Exploits1References15
OSV
OSV
added 2016/02/24 12:0 a.m.3 views

UBUNTU-CVE-2016-0706

Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 does not place org.apache.catalina.manager.StatusManagerServlet on the org/apache/catalina/core/RestrictedServlets.properties list, which allows remote authenticated users to bypass intended...

4.3CVSS6.9AI score0.06232EPSS
Exploits0References4
Rows per page
Query Builder