Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.9 views

Unity Linux 20.1060e / 20.1070e Security Update: tomcat (UTSA-2026-017430)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017430 advisory. The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, 10.0.0-M1 to 10.0.11, 9.0.40 to 9.0.53 and 8.5.60 to 8.5.71 introduced a memory leak. The obje...

7.5CVSS6.7AI score0.10997EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-2266

Malware in sbrugna...

7.5CVSS7.3AI score0.10997EPSS
Exploits0References29
RedHat Linux
RedHat Linux
added 2021/11/30 2:28 p.m.6 views

tomcat: OutOfMemoryError caused by HTTP upgrade connection leak could lead to DoS

A memory leak flaw was found in Apache Tomcat, where an HTTP upgrade connection does not release for WebSocket connections once the WebSocket connection is closed. If a sufficient number of such requests are made, an OutOfMemoryError occurs, leading to a denial of service. The highest threat from...

7.5CVSS6.7AI score0.10997EPSS
Exploits0References9
OSV
OSV
added 2021/10/15 6:51 p.m.1 views

GHSA-WPH7-X527-W3H5 Missing Release of Resource after Effective Lifetime in Apache Tomcat

The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, 10.0.0-M1 to 10.0.11, 9.0.40 to 9.0.53 and 8.5.60 to 8.5.71 introduced a memory leak. The object introduced to collect metrics for HTTP upgrade connections was not released for WebSocket connections once the connection was...

7.5CVSS7.2AI score0.10997EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2021/10/15 12:0 a.m.16 views

Apache Tomcat 10.0.0-M10 < 10.0.12 Denial of Service

The version of Apache Tomcat installed on the remote host is 10.1.0-M1 to 10.1.0-M5, 10.0.0-M10 to 10.0.11, 9.0.40 to 9.0.53 or 8.5.60 to 8.5.71. It is, therefore, affected by a denial of service. The object introduced to collect metrics for HTTP upgrade connections was not released for WebSocket...

7.5CVSS7.2AI score0.10997EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/10/15 12:0 a.m.17 views

Apache Tomcat 8.5.60 < 8.5.72 Denial of Service

The version of Apache Tomcat installed on the remote host is 10.1.0-M1 to 10.1.0-M5, 10.0.0-M10 to 10.0.11, 9.0.40 to 9.0.53 or 8.5.60 to 8.5.71. It is, therefore, affected by a denial of service. The object introduced to collect metrics for HTTP upgrade connections was not released for WebSocket...

7.5CVSS7.2AI score0.10997EPSS
Exploits0References2
Prion
Prion
added 2021/10/14 8:15 p.m.38 views

Memory corruption

The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, 10.0.0-M1 to 10.0.11, 9.0.40 to 9.0.53 and 8.5.60 to 8.5.71 introduced a memory leak. The object introduced to collect metrics for HTTP upgrade connections was not released for WebSocket connections once the connection was...

5CVSS7.2AI score0.10997EPSS
Exploits0References9Affected Software15
Apache Tomcat
Apache Tomcat
added 2021/10/01 12:0 a.m.48 views

Fixed in Apache Tomcat 10.1.0-M6

Important: Denial of Service CVE-2021-42340 The fix for bug 63362 introduced a memory leak. The object introduced to collect metrics for HTTP upgrade connections was not released for WebSocket connections once the WebSocket connection was closed. This created a memory leak that, over time, could...

7.5CVSS6.8AI score0.10997EPSS
Exploits0Affected Software1
Rows per page
Query Builder