Количество 14
Количество 14
GHSA-3p2h-wqq4-wf4h
Apache Tomcat Denial of Service via invalid HTTP priority header
CVE-2025-31650
Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of the failed request which created a memory leak. A large number of such requests could trigger an OutOfMemoryException resulting in a denial of service. This issue affects Apache Tomcat: from 9.0.76 through 9.0.102, from 10.1.10 through 10.1.39, from 11.0.0-M2 through 11.0.5. Users are recommended to upgrade to version 9.0.104, 10.1.40 or 11.0.6 which fix the issue.
CVE-2025-31650
Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of the failed request which created a memory leak. A large number of such requests could trigger an OutOfMemoryException resulting in a denial of service. This issue affects Apache Tomcat: from 9.0.76 through 9.0.102, from 10.1.10 through 10.1.39, from 11.0.0-M2 through 11.0.5. Users are recommended to upgrade to version 9.0.104, 10.1.40 or 11.0.6 which fix the issue.
CVE-2025-31650
Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of the failed request which created a memory leak. A large number of such requests could trigger an OutOfMemoryException resulting in a denial of service. This issue affects Apache Tomcat: from 9.0.76 through 9.0.102, from 10.1.10 through 10.1.39, from 11.0.0-M2 through 11.0.5. Users are recommended to upgrade to version 9.0.104, 10.1.40 or 11.0.6 which fix the issue.
CVE-2025-31650
Improper Input Validation vulnerability in Apache Tomcat. Incorrect er ...
BDU:2025-05708
Уязвимость сервера приложений Apache Tomcat, связанная с неполной очисткой временных или вспомогательных ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2025:1537-1
Security update for tomcat10
SUSE-SU-2025:1521-1
Security update for tomcat
SUSE-SU-2025:01537-1
Security update for tomcat10
SUSE-SU-2025:01521-1
Security update for tomcat
ROS-20250515-10
Множественные уязвимости tomcat
ELSA-2025-11335
ELSA-2025-11335: tomcat security update (IMPORTANT)
ELSA-2025-11333
ELSA-2025-11333: tomcat security update (IMPORTANT)
ELSA-2025-11332
ELSA-2025-11332: tomcat9 security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-3p2h-wqq4-wf4h Apache Tomcat Denial of Service via invalid HTTP priority header | 1% Низкий | 3 месяца назад | |
 | CVE-2025-31650 Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of the failed request which created a memory leak. A large number of such requests could trigger an OutOfMemoryException resulting in a denial of service. This issue affects Apache Tomcat: from 9.0.76 through 9.0.102, from 10.1.10 through 10.1.39, from 11.0.0-M2 through 11.0.5. Users are recommended to upgrade to version 9.0.104, 10.1.40 or 11.0.6 which fix the issue. | CVSS3: 7.5 | 1% Низкий | 3 месяца назад |
 | CVE-2025-31650 Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of the failed request which created a memory leak. A large number of such requests could trigger an OutOfMemoryException resulting in a denial of service. This issue affects Apache Tomcat: from 9.0.76 through 9.0.102, from 10.1.10 through 10.1.39, from 11.0.0-M2 through 11.0.5. Users are recommended to upgrade to version 9.0.104, 10.1.40 or 11.0.6 which fix the issue. | CVSS3: 7.5 | 1% Низкий | 3 месяца назад |
 | CVE-2025-31650 Improper Input Validation vulnerability in Apache Tomcat. Incorrect error handling for some invalid HTTP priority headers resulted in incomplete clean-up of the failed request which created a memory leak. A large number of such requests could trigger an OutOfMemoryException resulting in a denial of service. This issue affects Apache Tomcat: from 9.0.76 through 9.0.102, from 10.1.10 through 10.1.39, from 11.0.0-M2 through 11.0.5. Users are recommended to upgrade to version 9.0.104, 10.1.40 or 11.0.6 which fix the issue. | CVSS3: 7.5 | 1% Низкий | 3 месяца назад |
| CVE-2025-31650 Improper Input Validation vulnerability in Apache Tomcat. Incorrect er ... | CVSS3: 7.5 | 1% Низкий | 3 месяца назад |
 | BDU:2025-05708 Уязвимость сервера приложений Apache Tomcat, связанная с неполной очисткой временных или вспомогательных ресурсов, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 1% Низкий | 3 месяца назад |
 | SUSE-SU-2025:1537-1 Security update for tomcat10 | 3 месяца назад | ||
| SUSE-SU-2025:1521-1 Security update for tomcat | 3 месяца назад | ||
| SUSE-SU-2025:01537-1 Security update for tomcat10 | 2 месяца назад | ||
| SUSE-SU-2025:01521-1 Security update for tomcat | 2 месяца назад | ||
 | ROS-20250515-10 Множественные уязвимости tomcat | CVSS3: 9.8 | 3 месяца назад | |
| ELSA-2025-11335 ELSA-2025-11335: tomcat security update (IMPORTANT) | 21 день назад | ||
| ELSA-2025-11333 ELSA-2025-11333: tomcat security update (IMPORTANT) | 21 день назад | ||
| ELSA-2025-11332 ELSA-2025-11332: tomcat9 security update (IMPORTANT) | 20 дней назад |
Уязвимостей на страницу