java/org/apache/coyote/http11/InternalNioInputBuffer.java in the HTTP NIO connector in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28 does not properly restrict the request-header size, which allows remote attackers to cause a denial of service (memory consumption) via a large amount of header data.

The default SSL cipher configuration in Apache Tomcat 4.1.28 through 4.1.31, 5.0.0 through 5.0.30, and 5.5.0 through 5.5.17 uses certain insecure ciphers, including the anonymous cipher, which allows remote attackers to obtain sensitive information or have other, unspecified impacts.

Improper Neutralization of Input During Web Page Generation in Apache Tomcat

Insertion of Sensitive Information into Log File in Apache Tomcat

Apache Tomcat Allows Remote Attackers to Spoof AJP Requests

Improper Authentication in Apache Tomcat

Improper Verification of Source of a Communication Channel in Apache Tomcat

Expected Behavior Violation in Apache Tomcat

Improper Input Validation in Apache Tomcat

Improper Access Control in Apache Tomcat

Improper Resource Shutdown or Release in Apache Tomcat

The Windows installer for Apache Tomcat 6.0.0 through 6.0.20, 5.5.0 through 5.5.28, and possibly earlier versions uses a blank default password for the administrative user, which allows remote attackers to gain privileges.

Directory Traversal in Apache Tomcat

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Apache Tomcat

Apache Tomcat OS Command Injection vulnerability

Apache Tomcat Source Code Disclosure

Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat

Denial of Service in Apache Tomcat

Apache Tomcat Default Installation Reveals Sensitive Information

Apache Tomcat Vulnerable to Denial of Service (DoS) via Simultaneous Requests