Tomcat — контейнер сервлетов с открытым исходным кодом

Релизный цикл, информация об уязвимостях

Продукт: Tomcat

Вендор: apache

График релизов

Недавние уязвимости Tomcat

Количество 1 093

GHSA-f632-9449-3j4w

7 месяцев назад

Apache Tomcat - XSS in generated JSPs

CVSS3: 6.1

EPSS: Низкий

CVE-2024-52318

7 месяцев назад

Incorrect object recycling and reuse vulnerability in Apache Tomcat. ...

CVSS3: 6.1

EPSS: Низкий

CVE-2024-52318

7 месяцев назад

Incorrect object recycling and reuse vulnerability in Apache Tomcat. This issue affects Apache Tomcat: 11.0.0, 10.1.31, 9.0.96. Users are recommended to upgrade to version 11.0.1, 10.1.32 or 9.0.97, which fixes the issue.

CVSS3: 6.1

EPSS: Низкий

CVE-2024-52318

7 месяцев назад

Incorrect object recycling and reuse vulnerability in Apache Tomcat. This issue affects Apache Tomcat: 11.0.0, 10.1.31, 9.0.96. Users are recommended to upgrade to version 11.0.1, 10.1.32 or 9.0.97, which fixes the issue.

CVSS3: 6.1

EPSS: Низкий

GHSA-xcpr-7mr4-h4xq

7 месяцев назад

Apache Tomcat - Authentication Bypass

CVSS3: 9.8

EPSS: Низкий

GHSA-qvf5-hvjx-wm27

7 месяцев назад

Apache Tomcat Request and/or response mix-up

CVSS3: 6.5

EPSS: Низкий

CVE-2024-52318

7 месяцев назад

Incorrect object recycling and reuse vulnerability in Apache Tomcat. This issue affects Apache Tomcat: 11.0.0, 10.1.31, 9.0.96. Users are recommended to upgrade to version 11.0.1, 10.1.32 or 9.0.97, which fixes the issue.

CVSS3: 5.4

EPSS: Низкий

CVE-2024-52317

7 месяцев назад

Incorrect object re-cycling and re-use vulnerability in Apache Tomcat. ...

CVSS3: 6.5

EPSS: Низкий

CVE-2024-52317

7 месяцев назад

Incorrect object re-cycling and re-use vulnerability in Apache Tomcat. Incorrect recycling of the request and response used by HTTP/2 requests could lead to request and/or response mix-up between users. This issue affects Apache Tomcat: from 11.0.0-M23 through 11.0.0-M26, from 10.1.27 through 10.1.30, from 9.0.92 through 9.0.95. Users are recommended to upgrade to version 11.0.0, 10.1.31 or 9.0.96, which fixes the issue.

CVSS3: 6.5

EPSS: Низкий

CVE-2024-52316

7 месяцев назад

Unchecked Error Condition vulnerability in Apache Tomcat. If Tomcat is ...

CVSS3: 9.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
GHSA-f632-9449-3j4w Apache Tomcat - XSS in generated JSPs	CVSS3: 6.1	2% Низкий	7 месяцев назад
CVE-2024-52318 Incorrect object recycling and reuse vulnerability in Apache Tomcat. ...	CVSS3: 6.1	2% Низкий	7 месяцев назад
CVE-2024-52318 Incorrect object recycling and reuse vulnerability in Apache Tomcat. This issue affects Apache Tomcat: 11.0.0, 10.1.31, 9.0.96. Users are recommended to upgrade to version 11.0.1, 10.1.32 or 9.0.97, which fixes the issue.	CVSS3: 6.1	2% Низкий	7 месяцев назад
CVE-2024-52318 Incorrect object recycling and reuse vulnerability in Apache Tomcat. This issue affects Apache Tomcat: 11.0.0, 10.1.31, 9.0.96. Users are recommended to upgrade to version 11.0.1, 10.1.32 or 9.0.97, which fixes the issue.	CVSS3: 6.1	2% Низкий	7 месяцев назад
GHSA-xcpr-7mr4-h4xq Apache Tomcat - Authentication Bypass	CVSS3: 9.8	1% Низкий	7 месяцев назад
GHSA-qvf5-hvjx-wm27 Apache Tomcat Request and/or response mix-up	CVSS3: 6.5	4% Низкий	7 месяцев назад
CVE-2024-52318 Incorrect object recycling and reuse vulnerability in Apache Tomcat. This issue affects Apache Tomcat: 11.0.0, 10.1.31, 9.0.96. Users are recommended to upgrade to version 11.0.1, 10.1.32 or 9.0.97, which fixes the issue.	CVSS3: 5.4	2% Низкий	7 месяцев назад
CVE-2024-52317 Incorrect object re-cycling and re-use vulnerability in Apache Tomcat. ...	CVSS3: 6.5	4% Низкий	7 месяцев назад
CVE-2024-52317 Incorrect object re-cycling and re-use vulnerability in Apache Tomcat. Incorrect recycling of the request and response used by HTTP/2 requests could lead to request and/or response mix-up between users. This issue affects Apache Tomcat: from 11.0.0-M23 through 11.0.0-M26, from 10.1.27 through 10.1.30, from 9.0.92 through 9.0.95. Users are recommended to upgrade to version 11.0.0, 10.1.31 or 9.0.96, which fixes the issue.	CVSS3: 6.5	4% Низкий	7 месяцев назад
CVE-2024-52316 Unchecked Error Condition vulnerability in Apache Tomcat. If Tomcat is ...	CVSS3: 9.8	1% Низкий	7 месяцев назад

Уязвимостей на страницу