Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.9 views

RHEL 10 / 8 / 9 : Red Hat JBoss Web Server 6.2.2 (RHSA-2026:12194)

The remote Redhat Enterprise Linux 10 / 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:12194 advisory. Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised ...

9.1CVSS6AI score0.00494EPSS
Exploits0References10
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/31 3:28 p.m.7 views

Security Bulletin: Vulnerabilities in Apache Tomcat Server (CVE-2025-61795, CVE-2025-66614, CVE-2026-24733, CVE-2026-24734) affect Power HMC.

Summary The Apache Tomcat Server is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2025-61795 DESCRIPTION: Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits...

9.1CVSS5.8AI score0.01139EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/30 12:0 a.m.8 views

Amazon Linux 2023 : tomcat10, tomcat10-admin-webapps, tomcat10-el-5.0-api (ALAS2023-2026-1497)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1497 advisory. mproper Input Validation vulnerability. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.14, from 10.1.0-M1 through 10.1.49, from 9.0.0-M1 through 9.0.112. The following versions...

9.1CVSS7AI score0.00498EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/03/29 12:0 a.m.3 views

openSUSE 16 Security Update : tomcat11 (openSUSE-SU-2026:20414-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20414-1 advisory. Update to Tomcat 11.0.18: - CVE-2025-66614: client certificate verification bypass due to virtual host mapping bsc1258371. - CVE-2026-24733:...

9.1CVSS7AI score0.00498EPSS
Exploits0References10
Amazon
Amazon
added 2026/03/27 12:0 a.m.8 views

Important: tomcat9

Issue Overview: mproper Input Validation vulnerability. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.14, from 10.1.0-M1 through 10.1.49, from 9.0.0-M1 through 9.0.112. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through...

9.1CVSS6.9AI score0.00498EPSS
Exploits0
OpenVAS
OpenVAS
added 2026/03/23 12:0 a.m.5 views

openSUSE Security Advisory (SUSE-SU-2026:0932-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS5.8AI score0.00498EPSS
Exploits0References6
OSV
OSV
added 2026/03/19 10:26 a.m.9 views

SUSE-SU-2026:0932-1 Security update for tomcat

This update for tomcat fixes the following issues: Update to Tomcat 9.0.115: - CVE-2025-66614: client certificate verification bypass due to virtual host mapping bsc1258371. - CVE-2026-24733: improper input validation on HTTP/0.9 requests bsc1258385. - CVE-2026-24734: certificate revocation bypas...

9.1CVSS7.4AI score0.00498EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.5 views

SUSE SLES12 Security Update : tomcat (SUSE-SU-2026:0922-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:0922-1 advisory. - CVE-2026-24733: improper input validation on HTTP/0.9 requests bsc1258385 Tenable has extracted the preceding description block directly from the SUS...

6.5CVSS7AI score0.00494EPSS
Exploits0References4
Amazon
Amazon
added 2026/03/19 12:0 a.m.8 views

Medium: tomcat

Issue Overview: A flaw was found in Tomcat. An improper input validation vulnerability allows an attacker to bypass security constraints. Specifically, if a security constraint is configured to permit HEAD requests to a URI but deny GET requests, a malformed or specification invalid HEAD request...

6.5CVSS7.2AI score0.00494EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.7 views

Amazon Linux 2 : tomcat, --advisory ALAS2-2026-3204 (ALAS-2026-3204)

The version of tomcat installed on the remote host is prior to 7.0.76-10. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3204 advisory. A flaw was found in Tomcat. An improper input validation vulnerability allows an attacker to bypass security constraints...

6.5CVSS7AI score0.00494EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.4 views

SUSE: Security Advisory (SUSE-SU-2026:0877-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS5.8AI score0.00498EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.4 views

openSUSE Security Advisory (SUSE-SU-2026:0890-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS5.8AI score0.00498EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/14 12:0 a.m.6 views

SUSE SLES15: tomcat10 / tomcat10-admin-webapps / tomcat10-doc / etc (SUSE-SU-2026:0890-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0890-1 advisory. Update to Tomcat 10.1.52: - CVE-2025-66614: client certificate verification bypass due to virtual host mapping...

9.1CVSS7.1AI score0.00498EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.3 views

SUSE SLES15 / openSUSE 15 Security Update : tomcat11 (SUSE-SU-2026:0877-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0877-1 advisory. Update to Tomcat 11.0.18: - CVE-2025-66614: client certificate verification bypass due to virtual host mapping...

9.1CVSS7AI score0.00498EPSS
Exploits0References11
OSV
OSV
added 2026/03/12 5:39 a.m.7 views

SUSE-SU-2026:0877-1 Security update for tomcat11

This update for tomcat11 fixes the following issues: Update to Tomcat 11.0.18: - CVE-2025-66614: client certificate verification bypass due to virtual host mapping bsc1258371. - CVE-2026-24733: improper input validation on HTTP/0.9 requests bsc1258385. - CVE-2026-24734: certificate revocation...

9.1CVSS5.6AI score0.00498EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/02/18 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-24733

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Input Validation vulnerability in Apache Tomcat. Tomcat did not limit HTTP/0.9 requests to the GET method. If a security constraint was configured to...

6.5CVSS7AI score0.00494EPSS
Exploits0References3
Rows per page
Query Builder