Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

61164 matches found

Tenable Nessus
Tenable Nessusadded 2025/10/28 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-55754

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. Tomcat did not escape ANSI escape sequences in log messages. If...

9.6CVSS7.3AI score0.09244EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/10/28 12:0 a.m.1 views

PT-2025-44210

CVE-2025-89012 in Apache HTTP Server mods enables path traversal for file reads—patched Oct 30 release. Web admins: Lock down alias directives tight. Solid config audit seals it. CyberSecurity InfoSec Vulnerability...

7AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/10/28 12:0 a.m.1 views

PT-2025-44226

🟠 https://t.co/C9idbxoKvb Apache Tomcat, Relative Path Traversal, CVE-2025-45231 High...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/10/28 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-55752

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Relative Path Traversal vulnerability in Apache Tomcat. The fix for bug 60013 introduced a regression where the rewritten URL was normalized before it was...

7.5CVSS7.5AI score0.73974EPSS
Exploits4References3
OpenVAS
OpenVASadded 2025/10/28 12:0 a.m.5 views

Apache Tomcat Console Manipulation Vulnerability (Oct 2025) - Linux

Apache Tomcat is prone to a console manipulation vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:tomcat"; i...

9.6CVSS7AI score0.09244EPSS
Exploits0References5
OpenVAS
OpenVASadded 2025/10/28 12:0 a.m.6 views

Apache Tomcat Console Manipulation Vulnerability (Oct 2025) - Windows

Apache Tomcat is prone to a console manipulation vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:tomcat"; i...

9.6CVSS7AI score0.09244EPSS
Exploits0References5
OpenVAS
OpenVASadded 2025/10/28 12:0 a.m.8 views

Apache Tomcat Directory Traversal Vulnerability (Oct 2025) - Linux

Apache Tomcat is prone to a directory traversal vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:tomcat"; if...

7.5CVSS7AI score0.73974EPSS
Exploits4References5
OpenVAS
OpenVASadded 2025/10/28 12:0 a.m.3 views

Apache Tomcat DoS Vulnerability (Oct 2025) - Linux

Apache Tomcat is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:tomcat"; ...

5.3CVSS6.8AI score0.01005EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2025/10/28 12:0 a.m.2 views

SAP BusinessObjects Business Intelligence Platform Deserialization (3617142)

The version of SAP BusinessObjects Business Intelligence Platform installed on the remote host is prior to 2025 SP000 000500, 4.3 SP004 001400, or 4.3 SP005 000200. It is, therefore, affected by a vulnerability as referenced in the 3617142 advisory. - Improper Input Validation vulnerability in...

5.3CVSS6.4AI score0.01146EPSS
Exploits0References2
OSV
OSVadded 2025/10/27 6:31 p.m.0 views

GHSA-VFWW-5HM6-HX2J Apache Tomcat Vulnerable to Improper Neutralization of Escape, Meta, or Control Sequences

Tomcat did not escape ANSI escape sequences in log messages. If Tomcat was running in a console on a Windows operating system, and the console supported ANSI escape sequences, it was possible for an attacker to use a specially crafted URL to inject ANSI escape sequences to manipulate the console...

9.6CVSS7AI score0.09244EPSS
Exploits0References11
EUVD
EUVDadded 2025/10/27 6:31 p.m.1 views

EUVD-2025-36223

Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to...

5.3CVSS6.3AI score0.01005EPSS
Exploits0References2
OSV
OSVadded 2025/10/27 6:31 p.m.3 views

GHSA-HGRR-935X-PQ79 Apache Tomcat Vulnerable to Improper Resource Shutdown or Release

If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to delete. Depending on JVM settings, application memory usage and...

6CVSS6.7AI score0.01005EPSS
Exploits0References11
Github Security Blog
Github Security Blogadded 2025/10/27 6:31 p.m.3 views

Apache Tomcat Vulnerable to Improper Resource Shutdown or Release

If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to delete. Depending on JVM settings, application memory usage and...

5.3CVSS6.9AI score0.01005EPSS
Exploits0References11Affected Software3
OSV
OSVadded 2025/10/27 6:15 p.m.2 views

CVE-2025-61795

Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to...

5.3CVSS6.7AI score
Exploits0References2
NVD
NVDadded 2025/10/27 6:15 p.m.5 views

CVE-2025-61795

Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to...

5.3CVSS0.01005EPSS
Exploits0References3
OSV
OSVadded 2025/10/27 6:15 p.m.1 views

UBUNTU-CVE-2025-61795

Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to...

5.3CVSS7.1AI score0.01005EPSS
Exploits0References6
OSV
OSVadded 2025/10/27 6:15 p.m.2 views

UBUNTU-CVE-2025-55754

Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. Tomcat did not escape ANSI escape sequences in log messages. If Tomcat was running in a console on a Windows operating system, and the console supported ANSI escape sequences, it was possible for an...

9.6CVSS6.9AI score0.09244EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2025/10/27 5:46 p.m.6 views

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.62 SP2 security update

Red Hat JBoss Core Services Apache HTTP Server 2.4.62 Service Pack 2 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.1CVSS6.9AI score0.01437EPSS
Exploits2References7
Vulnrichment
Vulnrichmentadded 2025/10/27 5:30 p.m.1 views

CVE-2025-61795 Apache Tomcat: Delayed cleaning of multi-part upload temporary files may lead to DoS

Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to...

6.4AI score0.01005EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2025/10/27 5:30 p.m.2 views

CVE-2025-61795

Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to...

5.3CVSS7AI score0.01005EPSS
Exploits0
Rows per page
Query Builder