| CVE-2009-3555 |
critical |
9.8 |
10.0 |
|
|
|
17y ago |
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9… |
| CVE-2026-43512 |
critical |
9.8 |
9.8 |
|
|
|
23d ago |
DEPRECATED: Authentication Bypass Issues vulnerability in digest authentication in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, fr… |
| CVE-2026-41293 |
critical |
9.8 |
9.8 |
|
|
|
23d ago |
Improper Input Validation vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 10.0.0… |
| CVE-2025-55754 |
critical |
9.6 |
9.6 |
|
|
|
16d ago |
Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. Tomcat did not escape ANSI escape sequences in log messages. If Tomcat was running in a console on a Win… |
| CVE-2026-29145 |
critical |
— |
9.5 |
|
|
|
2mo ago |
CLIENT_CERT authentication does not fail as expected for some scenarios when soft fail is disabled vulnerability in Apache Tomcat, Apache Tomcat Native. This issue affects Apache Tomcat: from 11.0.0… |
| CVE-2026-43515 |
critical |
9.1 |
9.1 |
|
|
|
23d ago |
Improper Authorization vulnerability when multiple method constraints define an HTTP method for the same extension in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21,… |
| CVE-2010-2227 |
medium |
— |
7.4 |
|
|
|
16y ago |
Apache Tomcat does not properly handle an invalid Transfer-Encoding header |
| CVE-2013-4444 |
medium |
— |
6.8 |
|
|
|
12y ago |
Apache Tomcat Unrestricted file upload vulnerability |
| CVE-2013-2067 |
medium |
— |
6.8 |
|
|
|
13y ago |
Improper Authentication in Apache Tomcat |
| CVE-2014-0227 |
medium |
— |
6.4 |
|
|
|
12y ago |
Improper Input Validation in Apache Tomcat |
| CVE-2010-4312 |
medium |
— |
6.4 |
|
|
|
16y ago |
Apache Tomcat has cookies without HTTPOnly flag in Set-Cookie header |
| CVE-2016-0763 |
medium |
6.3 |
6.3 |
|
|
|
10y ago |
The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M3 does not consider whether ResourceLink… |
| CVE-2011-4858 |
medium |
— |
6.0 |
|
|
|
15y ago |
Improper Input Validation in Apache Tomcat |
| CVE-2010-4476 |
medium |
— |
6.0 |
|
|
|
16y ago |
Apache Tomcat affected by infinite loop in Double.parseDouble method in Java Runtime Environment |
| CVE-2016-0762 |
medium |
5.9 |
5.9 |
|
|
|
9y ago |
Observable Discrepancy in Apache Tomcat |
| CVE-2013-4286 |
medium |
— |
5.8 |
|
|
|
12y ago |
Apache Tomcat is vulnerable to HTTP request-smuggling |
| CVE-2011-1183 |
medium |
— |
5.8 |
|
|
|
15y ago |
Access controll bypass in Apache Tomcat |
| CVE-2011-1419 |
medium |
— |
5.8 |
|
|
|
15y ago |
Apache Tomcat does not follow ServletSecurity annotations |
| CVE-2011-1088 |
medium |
— |
5.8 |
|
|
|
15y ago |
Apache Tomcat allows remote attackers to bypass intended access restrictions |
| CVE-2009-2693 |
medium |
— |
5.8 |
|
|
|
17y ago |
Apache Tomcat Directory Traversal vulnerability |
| CVE-2023-41080 |
medium |
— |
5.5 |
|
|
|
2y ago |
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 thro… |
| CVE-2023-45648 |
medium |
— |
5.5 |
|
|
|
2y ago |
Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.81 and from 8.5.0 through 8.5.93 did not c… |
| CVE-2023-42795 |
medium |
— |
5.5 |
|
|
|
2y ago |
Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0… |
| CVE-2022-25762 |
medium |
— |
5.5 |
|
|
|
4y ago |
If a web application sends a WebSocket message concurrently with the WebSocket connection closing when running on Apache Tomcat 8.5.0 to 8.5.75 or Apache Tomcat 9.0.0.M1 to 9.0.20, it is possible tha… |
| CVE-2020-11996 |
medium |
— |
5.5 |
|
|
|
4y ago |
A specially crafted sequence of HTTP/2 requests sent to Apache Tomcat 10.0.0-M1 to 10.0.0-M5, 9.0.0.M1 to 9.0.35 and 8.5.0 to 8.5.55 could trigger high CPU usage for several seconds. If a sufficient … |
| CVE-2020-1935 |
medium |
— |
5.5 |
|
|
|
6y ago |
In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approach to end-of-line parsing that allowed some invalid HTTP headers to be parsed as va… |
| CVE-2025-61795 |
medium |
5.3 |
5.3 |
|
|
|
7mo ago |
Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred (including exceeding limits) during the processing of a multipart upload, temporary copies of the uploaded … |
| CVE-2016-6794 |
medium |
5.3 |
5.3 |
|
|
|
9y ago |
System Property Disclosure in Apache Tomcat |
| CVE-2015-5345 |
medium |
5.3 |
5.3 |
|
|
|
10y ago |
The Mapper component in Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.30, and 9.x before 9.0.0.M2 processes redirects before considering security constraints and Filters, which a… |
| CVE-2010-4172 |
medium |
— |
5.3 |
|
|
|
16y ago |
Improper Neutralization of Input During Web Page Generation in Apache Tomcat |
| CVE-2014-7810 |
medium |
— |
5.0 |
|
|
|
11y ago |
Improper Access Control in Apache Tomcat |
| CVE-2014-0075 |
medium |
— |
5.0 |
|
|
|
12y ago |
Integer Overflow or Wraparound in Apache Tomcat |
| CVE-2012-3544 |
medium |
— |
5.0 |
|
|
|
13y ago |
Apache Tomcat Vulnerable to Denial of Service (DoS) via Improper Handling of chunk extensions |
| CVE-2012-5885 |
medium |
— |
5.0 |
|
|
|
14y ago |
Improper Access Control in Apache Tomcat |
| CVE-2012-0022 |
medium |
— |
5.0 |
|
|
|
15y ago |
Denial of Service in Apache Tomcat |
| CVE-2011-3375 |
medium |
— |
5.0 |
|
|
|
15y ago |
Apache Tomcat Exposes IP Addresses and HTTP Headers of Requests |
| CVE-2011-5062 |
medium |
— |
5.0 |
|
|
|
15y ago |
Improper Authentication in Apache Tomcat |
| CVE-2011-1184 |
medium |
— |
5.0 |
|
|
|
15y ago |
Authentication Bypass in Apache Tomcat |
| CVE-2011-1475 |
medium |
— |
5.0 |
|
|
|
15y ago |
Apache Tomcat HTTP BIO Connector Error Discloses Information From Different Requests to Remote Users |
| CVE-2011-0534 |
medium |
— |
5.0 |
|
|
|
16y ago |
Apache Tomcat does not enforce the maxHttpHeaderSize limit |
| CVE-2011-2481 |
medium |
— |
4.6 |
|
|
|
15y ago |
Apache Tomcat Allows Replacing of XML Parser |
| CVE-2011-2526 |
medium |
— |
4.4 |
|
|
|
15y ago |
Improper Input Validation in Apache Tomcat |
| CVE-2017-7674 |
medium |
4.3 |
4.3 |
|
|
|
9y ago |
The CORS Filter in Apache Tomcat 9.0.0.M1 to 9.0.0.M21, 8.5.0 to 8.5.15, 8.0.0.RC1 to 8.0.44 and 7.0.41 to 7.0.78 did not add an HTTP Vary header indicating that the response varies depending on Orig… |
| CVE-2016-0706 |
medium |
4.3 |
4.3 |
|
|
|
10y ago |
Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 does not place org.apache.catalina.manager.StatusManagerServlet on the org/apache/catalina/core/Restrict… |
| CVE-2015-5174 |
medium |
4.3 |
4.3 |
|
|
|
10y ago |
Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat |
| CVE-2014-0119 |
medium |
— |
4.3 |
|
|
|
12y ago |
Missing XML Validation in Apache Tomcat |
| CVE-2014-0099 |
medium |
— |
4.3 |
|
|
|
12y ago |
Improper Neutralization of CRLF Sequences in HTTP Headers in Apache Tomcat |
| CVE-2014-0096 |
medium |
— |
4.3 |
|
|
|
12y ago |
Improper Input Validation in Apache Tomcat |
| CVE-2014-0033 |
medium |
— |
4.3 |
|
|
|
12y ago |
Improper Input Validation in Apache Tomcat |
| CVE-2013-4590 |
medium |
— |
4.3 |
|
|
|
12y ago |
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat |
| CVE-2013-4322 |
medium |
— |
4.3 |
|
|
|
12y ago |
Apache Tomcat Denial of Service vulnerability |
| CVE-2012-4431 |
medium |
— |
4.3 |
|
|
|
14y ago |
Cross-Site Request Forgery in Apache Tomcat |
| CVE-2012-3546 |
medium |
— |
4.3 |
|
|
|
14y ago |
Authentication Bypass in Apache Tomcat |
| CVE-2011-5064 |
medium |
— |
4.3 |
|
|
|
15y ago |
Use of Hard-coded Cryptographic Key in Apache Tomcat |
| CVE-2011-5063 |
medium |
— |
4.3 |
|
|
|
15y ago |
Improper Authentication in Apache Tomcat |
| CVE-2011-1582 |
medium |
— |
4.3 |
|
|
|
15y ago |
Access restriction bypass in Apache Tomcat |
| CVE-2011-0013 |
medium |
— |
4.3 |
|
|
|
16y ago |
Improper Neutralization of Input During Web Page Generation in Apache Tomcat |
| CVE-2009-2902 |
medium |
— |
4.3 |
|
|
|
17y ago |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Apache Tomcat |
| CVE-2009-2901 |
medium |
— |
4.3 |
|
|
|
17y ago |
Improper Authentication in Apache Tomcat |
| CVE-2026-43514 |
low |
3.7 |
3.7 |
|
|
|
23d ago |
Observable Timing Discrepancy vulnerability when comparing AJP secret in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M… |
| CVE-2010-1157 |
low |
— |
3.6 |
|
|
|
16y ago |
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat |
| CVE-2013-2071 |
low |
— |
2.6 |
|
|
|
13y ago |
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat |
| CVE-2024-54677 |
low |
— |
2.5 |
|
|
|
2y ago |
Uncontrolled Resource Consumption vulnerability in the examples web application provided with Apache Tomcat leads to denial of service. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.… |
| CVE-2011-2204 |
low |
— |
1.9 |
|
|
|
15y ago |
Insertion of Sensitive Information into Log File in Apache Tomcat |
| CVE-2010-3718 |
low |
— |
1.2 |
|
|
|
16y ago |
Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat |
| CVE-2022-29885 |
unknown |
— |
1.0 |
|
|
|
4y ago |
The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to r… |
| CVE-2009-0580 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Exposure of Sensitive Information in Apache Tomcat |
| CVE-2008-2938 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Directory Traversal vulnerability |
| CVE-2008-2370 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Path Traversal Vulnerability |
| CVE-2008-1232 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Cross-site scripting (XSS) vulnerability |
| CVE-2007-5461 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Path Traversal Vulnerability |
| CVE-2007-5333 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Exposure of Sensitive Information in Apache Tomcat |
| CVE-2007-3382 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat treats single quotes as delimiters in cookies |
| CVE-2007-2449 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat XSS Vulnerabilities in Examples Web Application |
| CVE-2007-0450 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Directory Traversal |
| CVE-2006-7196 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Cross-site scripting in Apache Tomcat |
| CVE-2006-3835 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Reveals Directories |
| CVE-2005-4703 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Discloses MS-DOS Pathname |
| CVE-2002-2272 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat DoS via Malicious Get Request |
| CVE-2002-2006 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Default Installation Reveals Sensitive Information |
| CVE-2002-1567 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat XSS Vulnerability |
| CVE-2002-1148 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Source Code Disclosure |
| CVE-2000-0759 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Jakarta Apache Tomcat Reveals Physical Paths |
| CVE-2003-0866 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Denial of Service vulnerability in the Catalina package |
| CVE-2003-0042 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Jakarta Tomcat Directory Listing vulnerability |
| CVE-2026-34487 |
unknown |
— |
— |
|
|
|
2mo ago |
Insertion of Sensitive Information into Log File vulnerability in the cloud membership for clustering component of Apache Tomcat exposed the Kubernetes bearer token. This issue affects Apache Tomcat… |
| CVE-2026-34483 |
unknown |
— |
— |
|
|
|
2mo ago |
Improper Encoding or Escaping of Output vulnerability in the JsonAccessLogValve component of Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.20, from 10.1.0-M1 through 1… |
| CVE-2026-25854 |
unknown |
— |
— |
|
|
|
2mo ago |
Occasional URL redirection to untrusted Site ('Open Redirect') vulnerability in Apache Tomcat via the LoadBalancerDrainingValve. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.18, fro… |
| CVE-2026-32990 |
unknown |
— |
— |
|
|
|
2mo ago |
Improper Input Validation vulnerability in Apache Tomcat due to an incomplete fix of CVE-2025-66614. This issue affects Apache Tomcat: from 11.0.15 through 11.0.19, from 10.1.50 through 10.1.52, fro… |
| CVE-2026-29146 |
unknown |
— |
— |
|
|
|
2mo ago |
Padding Oracle vulnerability in Apache Tomcat's EncryptInterceptor with default configuration. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.18, from 10.0.0-M1 through 10.1.52, from … |
| CVE-2025-66614 |
unknown |
— |
— |
|
|
|
4mo ago |
Improper Input Validation vulnerability. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.14, from 10.1.0-M1 through 10.1.49, from 9.0.0-M1 through 9.0.112. The following versions were… |
| CVE-2026-24733 |
unknown |
— |
— |
|
|
|
4mo ago |
Improper Input Validation vulnerability in Apache Tomcat. Tomcat did not limit HTTP/0.9 requests to the GET method. If a security constraint was configured to allow HEAD requests to a URI but deny… |
| CVE-2025-49124 |
unknown |
— |
— |
|
|
|
1y ago |
Untrusted Search Path vulnerability in Apache Tomcat installer for Windows. During installation, the Tomcat installer for Windows used icacls.exe without specifying a full path. This issue affects A… |
| CVE-2021-43980 |
unknown |
— |
— |
|
|
|
4y ago |
The simplified implementation of blocking reads and writes introduced in Tomcat 10 and back-ported to Tomcat 9.0.47 onwards exposed a long standing (but extremely hard to trigger) concurrency bug in … |
| CVE-2022-34305 |
unknown |
— |
— |
|
|
|
4y ago |
In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81 the Form authentication example in the examples web application displayed user provided data with… |
| CVE-2012-5887 |
unknown |
— |
— |
|
|
|
4y ago |
Improper Authentication in Apache Tomcat |
| CVE-2008-5515 |
unknown |
— |
— |
|
|
|
4y ago |
Directory Traversal in Apache Tomcat |
| CVE-2017-15706 |
unknown |
— |
— |
|
|
|
4y ago |
As part of the fix for bug 61201, the documentation for Apache Tomcat 9.0.0.M22 to 9.0.1, 8.5.16 to 8.5.23, 8.0.45 to 8.0.47 and 7.0.79 to 7.0.82 included an updated description of the search algorit… |
| CVE-2016-8747 |
unknown |
— |
— |
|
|
|
4y ago |
Apache Tomcat allows remote attackers to read data that was intended to be associated with a different request |
| CVE-2009-0783 |
unknown |
— |
— |
|
|
|
4y ago |
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat |
