Количество 11
Количество 11
CVE-2025-52434
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Tomcat when using the APR/Native connector. This was particularly noticeable with client initiated closes of HTTP/2 connections. This issue affects Apache Tomcat: from 9.0.0.M1 through 9.0.106. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 9.0.107, which fixes the issue.
CVE-2025-52434
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Tomcat when using the APR/Native connector. This was particularly noticeable with client initiated closes of HTTP/2 connections. This issue affects Apache Tomcat: from 9.0.0.M1 through 9.0.106. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 9.0.107, which fixes the issue.
CVE-2025-52434
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Tomcat when using the APR/Native connector. This was particularly noticeable with client initiated closes of HTTP/2 connections. This issue affects Apache Tomcat: from 9.0.0.M1 through 9.0.106. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 9.0.107, which fixes the issue.
CVE-2025-52434
Concurrent Execution using Shared Resource with Improper Synchronizati ...
GHSA-4j3c-42xv-3f84
Apache Tomcat Utilities is vulnerable to resource exhaustion when using the APR/Native connector
BDU:2025-08954
Уязвимость сервера приложений Apache Tomcat, связанная с ошибками синхронизации при использовании общего ресурса («Ситуация гонки»), позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2025:03024-1
Security update for tomcat
ROS-20250826-08
Множественные уязвимости tomcat
ELSA-2025-14181
ELSA-2025-14181: tomcat security update (IMPORTANT)
ELSA-2025-14178
ELSA-2025-14178: tomcat9 security update (IMPORTANT)
ELSA-2025-14177
ELSA-2025-14177: tomcat security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-52434 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Tomcat when using the APR/Native connector. This was particularly noticeable with client initiated closes of HTTP/2 connections. This issue affects Apache Tomcat: from 9.0.0.M1 through 9.0.106. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 9.0.107, which fixes the issue. | CVSS3: 7.5 | 0% Низкий | около 2 месяцев назад |
 | CVE-2025-52434 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Tomcat when using the APR/Native connector. This was particularly noticeable with client initiated closes of HTTP/2 connections. This issue affects Apache Tomcat: from 9.0.0.M1 through 9.0.106. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 9.0.107, which fixes the issue. | CVSS3: 5.3 | 0% Низкий | около 2 месяцев назад |
 | CVE-2025-52434 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Tomcat when using the APR/Native connector. This was particularly noticeable with client initiated closes of HTTP/2 connections. This issue affects Apache Tomcat: from 9.0.0.M1 through 9.0.106. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 9.0.107, which fixes the issue. | CVSS3: 7.5 | 0% Низкий | около 2 месяцев назад |
| CVE-2025-52434 Concurrent Execution using Shared Resource with Improper Synchronizati ... | CVSS3: 7.5 | 0% Низкий | около 2 месяцев назад |
| GHSA-4j3c-42xv-3f84 Apache Tomcat Utilities is vulnerable to resource exhaustion when using the APR/Native connector | CVSS3: 7.5 | 0% Низкий | около 2 месяцев назад |
 | BDU:2025-08954 Уязвимость сервера приложений Apache Tomcat, связанная с ошибками синхронизации при использовании общего ресурса («Ситуация гонки»), позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.6 | 0% Низкий | около 2 месяцев назад |
 | SUSE-SU-2025:03024-1 Security update for tomcat | 5 дней назад | ||
 | ROS-20250826-08 Множественные уязвимости tomcat | CVSS3: 5.6 | 9 дней назад | |
| ELSA-2025-14181 ELSA-2025-14181: tomcat security update (IMPORTANT) | 15 дней назад | ||
| ELSA-2025-14178 ELSA-2025-14178: tomcat9 security update (IMPORTANT) | 14 дней назад | ||
| ELSA-2025-14177 ELSA-2025-14177: tomcat security update (IMPORTANT) | 15 дней назад |
Уязвимостей на страницу