Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/04 12:0 a.m.3 views

RockyLinux 9 : tomcat (RLSA-2025:14181)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:14181 advisory. tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-49125...

7.5CVSS7.6AI score0.63258EPSS
Exploits1References15
OSV
OSV
added 2025/10/03 7:56 p.m.7 views

RLSA-2025:14179 Important: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-49125 apache-commons-fileupload: Apache...

7.5CVSS7.6AI score0.63258EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.6 views

AlmaLinux 8 : tomcat (ALSA-2025:14177)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:14177 advisory. tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-49125...

7.5CVSS7.6AI score0.63258EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2025/08/20 3:36 p.m.13 views

Important: Red Hat Security Advisory: tomcat security update

An update for tomcat is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS7AI score0.63258EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2025/08/20 3:33 p.m.10 views

Important: Red Hat Security Advisory: tomcat9 security update

An update for tomcat9 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.5CVSS7AI score0.63258EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.6 views

RHEL 10 : tomcat9 (RHSA-2025:14178)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:14178 advisory. Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages...

7.5CVSS7.8AI score0.63258EPSS
Exploits1References16
Exploit DB
Exploit DB
added 2025/06/05 12:0 a.m.264 views

Apache Tomcat 10.1.39 - Denial of Service (DoS)

Exploit Title: Apache Tomcat 10.1.39 - Denial of Service DOS Author: Abdualhadi khalifa CVE: CVE-2025-31650 import httpx import asyncio import random import urllib.parse import sys import socket from colorama import init, Fore, Style init class TomcatKiller: def initself: self.successcount = 0...

7.5CVSS7.4AI score0.66933EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2014-0075

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before...

5CVSS6.9AI score0.2006EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/10/29 12:7 p.m.18 views

Important: Red Hat Security Advisory: pki-deps:10.6 security update

An update for the pki-deps:10.6 module is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

8.6CVSS7.2AI score0.01702EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2020/07/14 3:15 p.m.53 views

CVE-2020-13935

The payload length in a WebSocket frame was not correctly validated in Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M1 to 9.0.36, 8.5.0 to 8.5.56 and 7.0.27 to 7.0.104. Invalid payload lengths could trigger an infinite loop. Multiple requests with invalid payload lengths could lead to a denial of...

7.5CVSS6.8AI score0.87553EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 5:21 a.m.49 views

Security Bulletin: Rational Build Forge Security Advisory (CVE-2016-8610, CVE-2017-6056, CVE-2017-5647, CVE-2017-5648)

Summary Apache Tomcat and OpenSSL have security vulnerabilities that enables an attacker to exploit the application. Respective security vulnerabilities are discussed in detail in the subsequent sections. Vulnerability Details This section includes the vulnerability details that affect the Ration...

9.1CVSS0.5AI score0.39657EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2015/06/16 12:0 a.m.39 views

Apache Tomcat Denial Of Service Vulnerability (Jun 2015) - Windows

Apache Tomcat is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:tomcat";...

7.8CVSS5.8AI score0.20318EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2012/02/22 12:0 a.m.23 views

Apache Tomcat 7.0.x < 7.0.23 Hash Collision Denial of Service

Binary data 800616.prm...

5CVSS7.3AI score0.80318EPSS
Exploits6References5
RedHat Linux
RedHat Linux
added 2009/11/09 3:37 p.m.4 views

tomcat6 Denial-Of-Service with AJP connection

Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when the Java AJP connector and modjk load balancing are used, allows remote attackers to cause a denial of service application outage via a crafted request with invalid headers, related to temporary blocking of...

5CVSS6.2AI score0.10053EPSS
Exploits1References4
Exploit DB
Exploit DB
added 2002/12/04 12:0 a.m.61 views

Apache 1.3.x + Tomcat 4.0.x/4.1.x mod_jk - Chunked Encoding Denial of Service

source: https://www.securityfocus.com/bid/6320/info Apache Webserver and Tomcat are HTTP servers maintained and distributed by the Apache project. Apache Webserver and Tomcat are available for the Unix, Linux, and Microsoft Windows platforms. It has been reported that a denial of service exists i...

7AI score
Exploits0
NVD
NVD
added 2002/10/04 4:0 a.m.21 views

CVE-2002-0936

The Java Server Pages JSP engine in Tomcat allows web page owners to cause a denial of service engine crash on the web server via a JSP page that calls WPrinterJob.pageSetupnull,null...

5CVSS6.4AI score0.26849EPSS
Exploits1References7
securityvulns
securityvulns
added 2002/06/20 12:0 a.m.27 views

KPMG-2002025: Apache Tomcat Denial of Service

-------------------------------------------------------------------- Title: Apache Tomcat Denial of Service BUG-ID: 2002025 Released: 20th Jun 2002 -------------------------------------------------------------------- Problem: ======== A malicious user could tie up all 75 working threads and cause...

6.9AI score
Exploits0
Rows per page
Query Builder