Lucene search
K

8 matches found

OSV
OSV
added 2026/05/12 4:16 p.m.4 views

DEBIAN-CVE-2026-43512

DEPRECATED: Authentication Bypass Issues vulnerability in digest authentication in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 8.5.0 through 8.5.100, from before 7.0.0. Older unsupported...

9.8CVSS5.7AI score0.01233EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/06/16 12:0 a.m.3 views

Apache Tomcat 安全漏洞

Apache Tomcat is a lightweight Web application server from the American Apache Apache Foundation. It is used to implement support for Servlets and JavaServer Page JSP. A security vulnerability exists in Apache Tomcat that stems from the installer not specifying the full path when using icacls.exe...

8.4CVSS7.4AI score0.00347EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/11/18 12:0 a.m.10 views

Apache Tomcat 11.0.0-M1 < 11.0.0 / 11.0.0-M23 < 11.0.0 Multiple Vulnerabilities

Binary data 701493.pasl...

9.8CVSS7.3AI score0.06287EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/07/04 12:0 a.m.39 views

Apache Tomcat DoS Vulnerability (Jul 2024) - Windows

Apache Tomcat is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apache:tomcat"; ...

7.5CVSS7.6AI score0.04602EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/03/13 12:0 a.m.32 views

Apache Tomcat Multiple DoS Vulnerabilities (Mar 2024) - Linux

Apache Tomcat is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.4AI score0.23072EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2024/01/11 12:0 a.m.35 views

Oracle Linux 8 : tomcat (ELSA-2024-0125)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0125 advisory. - Open Redirect vulnerability in FORM authentication CVE-2023-41080 - FileUpload: DoS due to accumulation of temporary files on Windows CVE-2023-42794 ...

6.1CVSS7.4AI score0.05972EPSS
Exploits2References5
OSV
OSV
added 2023/10/10 6:15 p.m.45 views

CVE-2023-42795

Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.80 and from 8.5.0 through 8.5.93, an error could cause Tomcat to skip some parts of the recycling...

5.3CVSS7.5AI score
Exploits0References6
NVD
NVD
added 2023/08/25 9:15 p.m.23 views

CVE-2023-41080

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.0.12, from 9.0.0-M1 through 9.0.79 and from 8.5.0 through 8.5.92. Older, EOL versions may als...

6.1CVSS7AI score0.05972EPSS
Exploits0References5
Rows per page
Query Builder