Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

RedHat Linux
RedHat Linuxadded 2026/05/12 8:44 p.m.10 views

Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: tomcat10: tomcat10-10.1.55-1.hum1 noarch tomcat10-admin-webapps-10.1.55-1.hum1 noarch tomcat10-common-10.1.55-1.hum1 noarch tomcat10-docs-webapp-10.1.55-1.hum1 noarch...

9.8CVSS5.8AI score0.00139EPSS
Exploits1References5
OSV
OSVadded 2026/05/12 6:30 p.m.2 views

GHSA-5MP6-JRQ3-R938 Apache Tomcat: LockOutRealm treats user names as case-sensitive

Improper Handling of Case Sensitivity vulnerability in LockOutRealm in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 8.5.0 through 8.5.100, from 7.0.0 through 7.0.109. Older unsupported versions...

7.5CVSS5.7AI score0.00082EPSS
Exploits0References10
Snyk
Snykadded 2026/05/12 5:22 p.m.7 views

Improper Validation of Syntactic Correctness of Input

Overview org.apache.tomcat.embed:tomcat-embed-core is a Core Tomcat implementation. Affected versions of this package are vulnerable to Improper Validation of Syntactic Correctness of Input in the processing of HTTP/2 request headers. An attacker can cause unexpected behavior or potentially...

9.8CVSS5.8AI score0.00073EPSS
Exploits0References2
Snyk
Snykadded 2026/05/12 5:22 p.m.7 views

Improper Validation of Syntactic Correctness of Input

Overview org.apache.tomcat:tomcat-coyote is a Tomcat Connectors and HTTP parser. Affected versions of this package are vulnerable to Improper Validation of Syntactic Correctness of Input in the processing of HTTP/2 request headers. An attacker can cause unexpected behavior or potentially compromi...

9.8CVSS5.8AI score0.00073EPSS
Exploits0References2
CVE
CVEadded 2026/05/12 3:26 p.m.20 views

CVE-2026-43513

CVE-2026-43513 : Apache Tomcat has an improper handling of case sensitivity in LockOutRealm. Affects Tomcat 11.0.0-M1 through 11.0.21, 10.1.0-M1 through 10.1.54, 9.0.0.M1 through 9.0.117, 8.5.0 through 8.5.100, and 7.0.0 through 7.0.109 (older unsupported versions may also be affected). Upgrading...

7.5CVSS5.7AI score0.00082EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessusadded 2026/05/12 12:0 a.m.5 views

Apache Tomcat 10.1.0.M1 < 10.1.55 multiple vulnerabilities

The version of Tomcat installed on the remote host is prior to 10.1.55. It is, therefore, affected by multiple vulnerabilities as referenced in the fixedinapachetomcat10.1.55security-10 advisory. - DEPRECATED: Authentication Bypass Issues vulnerability in digest authentication in Apache Tomcat...

9.8CVSS5.8AI score0.00139EPSS
Exploits1References18
Rows per page
Query Builder