Lucene search
K

5 matches found

OSV
OSV
added 2026/01/29 3:38 p.m.8 views

CLSA-2026-1769701085 pki-servlet-engine: Fix of CVE-2025-31651

CVE-2025-31651: fix improper neutralization of escape, meta or control sequences to avoid bypassing rewrite rules...

9.8CVSS7AI score0.0418EPSS
Exploits1References1
OSV
OSV
added 2025/10/27 2:43 p.m.4 views

CLSA-2025-1761576180 Fix CVE(s): CVE-2025-31651

SECURITY UPDATE: Bypassing of some rewrite rules by a specially crafted request - debian/patches/CVE-2025-31651.patch: better handling of URLs - CVE-2025-31651...

9.8CVSS7.3AI score0.0418EPSS
Exploits1References1
Amazon
Amazon
added 2025/05/29 12:0 a.m.7 views

Medium: tomcat

Issue Overview: Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. For a subset of unlikely rewrite rule configurations, it was possible for a specially crafted request to bypass some rewrite rules. If those rewrite rules effectively enforced security...

9.8CVSS6.7AI score0.0418EPSS
Exploits1
Amazon
Amazon
added 2025/05/13 12:0 a.m.8 views

Important: tomcat9

Issue Overview: Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of the failed request which created a memory leak. A large number of such requests could trigger an OutOfMemoryException...

9.8CVSS7.3AI score0.66933EPSS
Exploits6
OSV
OSV
added 2025/04/28 8:15 p.m.1 views

UBUNTU-CVE-2025-31651

Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. For a subset of unlikely rewrite rule configurations, it was possible for a specially crafted request to bypass some rewrite rules. If those rewrite rules effectively enforced security constraints, those...

9.8CVSS6.9AI score0.0418EPSS
Exploits1References5
Rows per page
Query Builder