Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
apache tomcat 7.0.14 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-2481
Apache Tomcat 7.0.x before 7.0.17 permits web applications to replace an XML parser used for other web applications, which allows local users to read or modify the (1) web.xml, (2) context.xml, or (3) tld files of arbitrary web applications via a crafted application that is...
Apache Tomcat 7.0.13
Apache Tomcat 7.0.11
Apache Tomcat 7.0.3
Apache Tomcat 7.0.12
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.1
Apache Tomcat 7.0.7
Apache Tomcat 7.0.9
Apache Tomcat 7.0.0
Apache Tomcat 7.0.2
Apache Tomcat 7.0.8
Apache Tomcat 7.0.14
Apache Tomcat 7.0.10
Apache Tomcat 7.0.4
NA
CVE-2011-3375
Apache Tomcat 6.0.30 through 6.0.33 and 7.x before 7.0.22 does not properly perform certain caching and recycling operations involving request objects, which allows remote attackers to obtain unintended read access to IP address and HTTP header information in opportunistic...
Apache Tomcat 6.0.33
Apache Tomcat 6.0.30
Apache Tomcat 6.0.31
Apache Tomcat 6.0.32
Apache Tomcat 7.0.15
Apache Tomcat 7.0.14
Apache Tomcat 7.0.6
Apache Tomcat 7.0.5
Apache Tomcat 7.0.21
Apache Tomcat 7.0.20
Apache Tomcat 7.0.13
Apache Tomcat 7.0.12
Apache Tomcat 7.0.11
Apache Tomcat 7.0.4
Apache Tomcat 7.0.3
Apache Tomcat 7.0.19
Apache Tomcat 7.0.18
Apache Tomcat 7.0.10
Apache Tomcat 7.0.9
Apache Tomcat 7.0.2
Apache Tomcat 7.0.1
Apache Tomcat 7.0.17
Apache Tomcat 7.0.16
Apache Tomcat 7.0.8
Apache Tomcat 7.0.7
Apache Tomcat 7.0.0
NA
CVE-2011-3376
org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat 7.x before 7.0.22 does not properly restrict ContainerServlets in the Manager application, which allows local users to gain privileges by using an untrusted web application to access the Manager...
Apache Tomcat 7.0.0
Apache Tomcat 7.0.7
Apache Tomcat 7.0.8
Apache Tomcat 7.0.17
Apache Tomcat 7.0.15
Apache Tomcat 7.0.1
Apache Tomcat 7.0.2
Apache Tomcat 7.0.9
Apache Tomcat 7.0.10
Apache Tomcat 7.0.11
Apache Tomcat 7.0.18
Apache Tomcat 7.0.19
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.14
Apache Tomcat 7.0.16
Apache Tomcat 7.0.3
Apache Tomcat 7.0.4
Apache Tomcat 7.0.12
Apache Tomcat 7.0.13
Apache Tomcat 7.0.20
Apache Tomcat 7.0.21
NA
CVE-2011-2729
native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 through 1.0.6 in Apache Commons, as used in Apache Tomcat 5.5.32 through 5.5.33, 6.0.30 through 6.0.32, and 7.0.x before 7.0.20 on Linux, does not drop capabilities, which allows remote attackers to bypass read...
Apache Tomcat 5.5.33
Apache Tomcat 5.5.32
Apache Tomcat 6.0.30
Apache Tomcat 6.0.31
Apache Tomcat 6.0.32
Apache Tomcat 7.0.6
Apache Tomcat 7.0.0
Apache Tomcat 7.0.7
Apache Tomcat 7.0.9
Apache Tomcat 7.0.8
Apache Apache Commons Daemon 1.0.6
Apache Tomcat 7.0.14
Apache Tomcat 7.0.2
Apache Tomcat 7.0.4
Apache Tomcat 7.0.17
Apache Tomcat 7.0.19
Apache Tomcat 7.0.10
Apache Tomcat 7.0.13
Apache Tomcat 7.0.3
Apache Tomcat 7.0.16
Apache Apache Commons Daemon 1.0.3
Apache Tomcat 7.0.11
Apache Tomcat 7.0.5
Apache Tomcat 7.0.12
Apache Tomcat 7.0.1
Apache Apache Commons Daemon 1.0.4
Apache Apache Commons Daemon 1.0.5
NA
CVE-2013-2071
java/org/apache/catalina/core/AsyncContextImpl.java in Apache Tomcat 7.x before 7.0.40 does not properly handle the throwing of a RuntimeException in an AsyncListener in an application, which allows context-dependent attackers to obtain sensitive request information intended for...
Apache Tomcat 7.0.15
Apache Tomcat 7.0.30
Apache Tomcat 7.0.23
Apache Tomcat 7.0.11
Apache Tomcat 7.0.0
Apache Tomcat 7.0.4
Apache Tomcat 7.0.25
Apache Tomcat 7.0.13
Apache Tomcat 7.0.2
Apache Tomcat 7.0.1
Apache Tomcat 7.0.16
Apache Tomcat 7.0.7
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.20
Apache Tomcat 7.0.17
Apache Tomcat 7.0.3
Apache Tomcat 7.0.19
Apache Tomcat 7.0.22
Apache Tomcat 7.0.21
Apache Tomcat 7.0.18
Apache Tomcat 7.0.14
Apache Tomcat 7.0.10
Apache Tomcat 7.0.28
Apache Tomcat 7.0.12
Apache Tomcat 7.0.9
Apache Tomcat 7.0.8
Apache Tomcat 7.0.32
NA
CVE-2013-4444
Unrestricted file upload vulnerability in Apache Tomcat 7.x before 7.0.40, in certain situations involving outdated java.io.File code and a custom JMX configuration, allows remote attackers to execute arbitrary code by uploading and accessing a JSP file....
Apache Tomcat 7.0.11
Apache Tomcat 7.0.12
Apache Tomcat 7.0.19
Apache Tomcat 7.0.2
Apache Tomcat 7.0.26
Apache Tomcat 7.0.27
Apache Tomcat 7.0.33
Apache Tomcat 7.0.34
Apache Tomcat 7.0.4
Apache Tomcat 7.0.1
Apache Tomcat 7.0.10
Apache Tomcat 7.0.17
Apache Tomcat 7.0.18
Apache Tomcat 7.0.23
Apache Tomcat 7.0.24
Apache Tomcat 7.0.25
Apache Tomcat 7.0.31
Apache Tomcat 7.0.32
Apache Tomcat
Apache Tomcat 7.0.0
Apache Tomcat 7.0.15
Apache Tomcat 7.0.16
Apache Tomcat 7.0.21
Apache Tomcat 7.0.22
Apache Tomcat 7.0.3
Apache Tomcat 7.0.30
Apache Tomcat 7.0.37
Apache Tomcat 7.0.38
Apache Tomcat 7.0.13
Apache Tomcat 7.0.14
Apache Tomcat 7.0.20
Apache Tomcat 7.0.28
Apache Tomcat 7.0.29
Apache Tomcat 7.0.35
Apache Tomcat 7.0.36
1 Github repository available
NA
CVE-2013-2067
java/org/apache/catalina/authenticator/FormAuthenticator.java in the form authentication feature in Apache Tomcat 6.0.21 through 6.0.36 and 7.x before 7.0.33 does not properly handle the relationships between authentication requirements and sessions, which allows remote...
Apache Tomcat 6.0.29
Apache Tomcat 6.0.30
Apache Tomcat 6.0.21
Apache Tomcat 6.0.31
Apache Tomcat 6.0.32
Apache Tomcat 6.0.24
Apache Tomcat 6.0.26
Apache Tomcat 6.0.33
Apache Tomcat 6.0.35
Apache Tomcat 6.0.27
Apache Tomcat 6.0.28
Apache Tomcat 6.0.36
Apache Tomcat 7.0.0
Apache Tomcat 7.0.13
Apache Tomcat 7.0.15
Apache Tomcat 7.0.23
Apache Tomcat 7.0.11
Apache Tomcat 7.0.2
Apache Tomcat 7.0.16
Apache Tomcat 7.0.7
Apache Tomcat 7.0.19
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.1
Apache Tomcat 7.0.4
Apache Tomcat 7.0.3
Apache Tomcat 7.0.22
Apache Tomcat 7.0.9
Apache Tomcat 7.0.21
Apache Tomcat 7.0.32
Apache Tomcat 7.0.20
Apache Tomcat 7.0.17
Apache Tomcat 7.0.28
Apache Tomcat 7.0.12
Apache Tomcat 7.0.8
Apache Tomcat 7.0.18
Apache Tomcat 7.0.30
Apache Tomcat 7.0.14
Apache Tomcat 7.0.10
Apache Tomcat 7.0.25
NA
CVE-2013-0346
** DISPUTED ** Apache Tomcat 7.x uses world-readable permissions for the log directory and its files, which might allow local users to obtain sensitive information by reading a file. NOTE: One Tomcat distributor has stated "The tomcat log directory does not contain any...
Apache Tomcat 7.0.18
Apache Tomcat 7.0.19
Apache Tomcat 7.0.2
Apache Tomcat 7.0.32
Apache Tomcat 7.0.33
Apache Tomcat 7.0.34
Apache Tomcat 7.0.10
Apache Tomcat 7.0.11
Apache Tomcat 7.0.12
Apache Tomcat 7.0.13
Apache Tomcat 7.0.25
Apache Tomcat 7.0.26
Apache Tomcat 7.0.27
Apache Tomcat 7.0.28
Apache Tomcat 7.0.4
Apache Tomcat 7.0.40
Apache Tomcat 7.0.41
Apache Tomcat 7.0.42
Apache Tomcat 7.0.9
Apache Tomcat 7.0.0
Apache Tomcat 7.0.1
Apache Tomcat 7.0.14
Apache Tomcat 7.0.16
Apache Tomcat 7.0.21
Apache Tomcat 7.0.23
Apache Tomcat 7.0.3
Apache Tomcat 7.0.31
Apache Tomcat 7.0.36
Apache Tomcat 7.0.38
Apache Tomcat 7.0.43
Apache Tomcat 7.0.45
Apache Tomcat 7.0.6
Apache Tomcat 7.0.8
Apache Tomcat 7.0.35
Apache Tomcat 7.0.47
Apache Tomcat 7.0.48
Apache Tomcat 7.0.49
Apache Tomcat 7.0.5
Apache Tomcat 7.0.15
Apache Tomcat 7.0.17
Apache Tomcat 7.0.20
Apache Tomcat 7.0.22
Apache Tomcat 7.0.24
Apache Tomcat 7.0.29
Apache Tomcat 7.0.30
Apache Tomcat 7.0.37
Apache Tomcat 7.0.39
Apache Tomcat 7.0.44
Apache Tomcat 7.0.46
Apache Tomcat 7.0.50
Apache Tomcat 7.0.7
NA
CVE-2012-3546
org/apache/catalina/realm/RealmBase.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.30, when FORM authentication is used, allows remote attackers to bypass security-constraint checks by leveraging a previous setUserPrincipal call and then placing /j_security_check at...
Apache Tomcat 6.0
Apache Tomcat 6.0.14
Apache Tomcat 6.0.29
Apache Tomcat 6.0.33
Apache Tomcat 6.0.18
Apache Tomcat 6.0.1
Apache Tomcat 6.0.32
Apache Tomcat 6.0.9
Apache Tomcat 6.0.8
Apache Tomcat 6.0.2
Apache Tomcat 6.0.4
Apache Tomcat 6.0.27
Apache Tomcat 6.0.3
Apache Tomcat 6.0.12
Apache Tomcat 6.0.11
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.28
Apache Tomcat 6.0.0
Apache Tomcat 6.0.5
Apache Tomcat 6.0.24
Apache Tomcat 6.0.31
Apache Tomcat 6.0.13
Apache Tomcat 6.0.19
Apache Tomcat 6.0.16
Apache Tomcat 6.0.15
Apache Tomcat 6.0.30
Apache Tomcat 6.0.35
Apache Tomcat 6.0.17
Apache Tomcat 6.0.26
Apache Tomcat 6.0.10
Apache Tomcat 6.0.20
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.17
Apache Tomcat 7.0.14
Apache Tomcat 7.0.3
Apache Tomcat 7.0.28
Apache Tomcat 7.0.22
Apache Tomcat 7.0.9
Apache Tomcat 7.0.13
Apache Tomcat 7.0.2
Apache Tomcat 7.0.1
Apache Tomcat 7.0.20
Apache Tomcat 7.0.4
Apache Tomcat 7.0.0
Apache Tomcat 7.0.7
Apache Tomcat 7.0.19
Apache Tomcat 7.0.15
Apache Tomcat 7.0.23
Apache Tomcat 7.0.25
Apache Tomcat 7.0.16
Apache Tomcat 7.0.21
Apache Tomcat 7.0.18
Apache Tomcat 7.0.10
Apache Tomcat 7.0.11
Apache Tomcat 7.0.12
Apache Tomcat 7.0.8
NA
CVE-2012-2733
java/org/apache/coyote/http11/InternalNioInputBuffer.java in the HTTP NIO connector in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28 does not properly restrict the request-header size, which allows remote attackers to cause a denial of service (memory consumption) via a...
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.17
Apache Tomcat 6.0.0
Apache Tomcat 6.0.2
Apache Tomcat 6.0.26
Apache Tomcat 6.0.10
Apache Tomcat 6.0.20
Apache Tomcat 6.0
Apache Tomcat 6.0.14
Apache Tomcat 6.0.29
Apache Tomcat 6.0.1
Apache Tomcat 6.0.27
Apache Tomcat 6.0.3
Apache Tomcat 6.0.12
Apache Tomcat 6.0.11
Apache Tomcat 6.0.9
Apache Tomcat 6.0.8
Apache Tomcat 6.0.33
Apache Tomcat 6.0.4
Apache Tomcat 6.0.18
Apache Tomcat 6.0.32
Apache Tomcat 6.0.13
Apache Tomcat 6.0.19
Apache Tomcat 6.0.16
Apache Tomcat 6.0.15
Apache Tomcat 6.0.30
Apache Tomcat 6.0.28
Apache Tomcat 6.0.5
Apache Tomcat 6.0.24
Apache Tomcat 6.0.31
Apache Tomcat 6.0.35
Apache Tomcat 7.0.6
Apache Tomcat 7.0.21
Apache Tomcat 7.0.18
Apache Tomcat 7.0.14
Apache Tomcat 7.0.10
Apache Tomcat 7.0.12
Apache Tomcat 7.0.4
Apache Tomcat 7.0.8
Apache Tomcat 7.0.13
Apache Tomcat 7.0.5
Apache Tomcat 7.0.20
Apache Tomcat 7.0.17
Apache Tomcat 7.0.0
Apache Tomcat 7.0.3
Apache Tomcat 7.0.22
Apache Tomcat 7.0.9
Apache Tomcat 7.0.15
Apache Tomcat 7.0.23
Apache Tomcat 7.0.11
Apache Tomcat 7.0.2
Apache Tomcat 7.0.25
Apache Tomcat 7.0.16
Apache Tomcat 7.0.1
Apache Tomcat 7.0.7
Apache Tomcat 7.0.19
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-29436
NULL pointer dereference
CVE-2022-26925
CVE-2022-30947
overflow
CVE-2022-28192
CVE-2022-30072
remote
CVE-2022-30778
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »