Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apache tomcat 8.0.0 vulnerabilities and exploits

(subscribe to this query)

5
CVSSv2
CVE-2014-0095
java/org/apache/coyote/ajp/AbstractAjpProcessor.java in Apache Tomcat 8.x before 8.0.4 allows remote attackers to cause a denial of service (thread consumption) by using a "Content-Length: 0" AJP request to trigger a hang in request processing....
Apache Tomcat 8.0.1Apache Tomcat 8.0.0Apache Tomcat 8.0.3
6.8
CVSSv2
CVE-2015-5346
Session fixation vulnerability in Apache Tomcat 7.x before 7.0.66, 8.x before 8.0.30, and 9.x before 9.0.0.M2, when different session settings are used for deployments of multiple versions of the same web application, might allow remote attackers to hijack web sessions by...
Apache Tomcat 8.0.29Apache Tomcat 8.0.28Apache Tomcat 8.0.11Apache Tomcat 8.0.12Apache Tomcat 8.0.23Apache Tomcat 8.0.24Apache Tomcat 7.0.14Apache Tomcat 7.0.16Apache Tomcat 7.0.25Apache Tomcat 7.0.26Apache Tomcat 7.0.35Apache Tomcat 7.0.2Apache Tomcat 7.0.62Apache Tomcat 7.0.53Apache Tomcat 8.0.26Apache Tomcat 7.0.4Apache Tomcat 7.0.63Apache Tomcat 7.0.39Apache Tomcat 7.0.28Apache Tomcat 7.0.59Apache Tomcat 7.0.65Apache Tomcat 7.0.50Apache Tomcat 7.0.6Apache Tomcat 8.0.27Apache Tomcat 8.0.15Apache Tomcat 8.0.0Apache Tomcat 7.0.52Apache Tomcat 7.0.37Apache Tomcat 7.0.5Apache Tomcat 7.0.19Apache Tomcat 7.0.61Apache Tomcat 8.0.14Apache Tomcat 7.0.27Apache Tomcat 7.0.12Apache Tomcat 8.0.17Apache Tomcat 7.0.20Apache Tomcat 7.0.34Apache Tomcat 7.0.55Apache Tomcat 8.0.20Apache Tomcat 7.0.22Apache Tomcat 9.0.0Apache Tomcat 8.0.1Apache Tomcat 7.0.11Apache Tomcat 7.0.23Apache Tomcat 7.0.0Apache Tomcat 8.0.22Apache Tomcat 7.0.42Apache Tomcat 7.0.29Apache Tomcat 7.0.47Apache Tomcat 8.0.21Apache Tomcat 7.0.41Apache Tomcat 7.0.30Apache Tomcat 7.0.10Apache Tomcat 8.0.18Apache Tomcat 7.0.54Apache Tomcat 8.0.3Apache Tomcat 7.0.57Apache Tomcat 7.0.32Apache Tomcat 7.0.21Apache Tomcat 7.0.40Apache Tomcat 7.0.56Apache Tomcat 7.0.64Apache Tomcat 7.0.33Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 15.10Debian Debian Linux 8.0Debian Debian Linux 7.0
5
CVSSv2
CVE-2016-6796
A malicious web application running on Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 was able to bypass a configured SecurityManager via manipulation of the configuration parameters for the JSP Servlet....
Apache Tomcat 6.0.1Apache Tomcat 6.0.2Apache Tomcat 6.0.10Apache Tomcat 6.0.11Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.26Apache Tomcat 6.0.27Apache Tomcat 6.0.34Apache Tomcat 6.0.36Apache Tomcat 6.0.43Apache Tomcat 7.0.58Apache Tomcat 7.0.5Apache Tomcat 7.0.22Apache Tomcat 7.0.39Apache Tomcat 7.0.65Apache Tomcat 6.0.44Apache Tomcat 7.0.6Apache Tomcat 7.0.14Apache Tomcat 7.0.48Apache Tomcat 8.0.0Apache Tomcat 7.0.23Apache Tomcat 7.0.66Apache Tomcat 6.0.0Apache Tomcat 7.0.47Apache Tomcat 7.0.31Apache Tomcat 7.0.30Apache Tomcat 7.0.15Apache Tomcat 7.0.57Apache Tomcat 7.0.32Apache Tomcat 7.0.40Apache Tomcat 7.0.56Apache Tomcat 6.0.33Apache Tomcat 6.0.39Apache Tomcat 7.0.62Apache Tomcat 6.0.6Apache Tomcat 7.0.53Apache Tomcat 7.0.1Apache Tomcat 7.0.2Apache Tomcat 8.0.2Apache Tomcat 6.0.22Apache Tomcat 6.0.25Apache Tomcat 6.0.7Apache Tomcat 7.0.26Apache Tomcat 6.0.15Apache Tomcat 6.0.42Apache Tomcat 7.0.18Apache Tomcat 6.0.31Apache Tomcat 7.0.11Apache Tomcat 6.0.9Apache Tomcat 6.0.24Apache Tomcat 6.0.23Apache Tomcat 7.0.44Apache Tomcat 7.0.69Apache Tomcat 6.0.17Apache Tomcat 7.0.52Apache Tomcat 6.0.32Apache Tomcat 6.0.14Apache Tomcat 7.0.19Apache Tomcat 6.0.41Apache Tomcat 7.0.10Apache Tomcat 7.0.36Apache Tomcat 7.0.35Apache Tomcat 7.0.61Apache Tomcat 8.0.3Apache Tomcat 7.0.43Apache Tomcat 6.0.5Apache Tomcat 7.0.27Apache Tomcat 6.0.30Apache Tomcat 7.0.4Apache Tomcat 7.0.3Apache Tomcat 6.0.40Apache Tomcat 6.0.35Apache Tomcat 6.0.16Apache Tomcat 7.0.70Apache Tomcat 6.0.8Apache Tomcat 8.0.4Apache Tomcat 8.0.10Apache Tomcat 7.0.49Apache Tomcat 8.0.30Apache Tomcat 7.0.12Apache Tomcat 8.0.17Apache Tomcat 7.0.20Apache Tomcat 8.0.7Apache Tomcat 7.0.34Apache Tomcat 8.5.2Apache Tomcat 7.0.8Apache Tomcat 7.0.55Apache Tomcat 8.5.4Apache Tomcat 7.0.63Apache Tomcat 8.0.20Apache Tomcat 6.0.4Apache Tomcat 8.0.31Apache Tomcat 8.5.0Apache Tomcat 7.0.46Apache Tomcat 8.0.5Apache Tomcat 7.0.28Apache Tomcat 8.0.1Apache Tomcat 7.0.59Apache Tomcat 8.0.19Apache Tomcat 7.0.0Apache Tomcat 7.0.50Apache Tomcat 8.0Apache Tomcat 6.0.20Apache Tomcat 8.0.12Apache Tomcat 6.0.21Apache Tomcat 8.0.27Apache Tomcat 8.0.15Apache Tomcat 6.0.29Apache Tomcat 7.0.67Apache Tomcat 6.0.3Apache Tomcat 6.0.38Apache Tomcat 8.0.22Apache Tomcat 8.0.29Apache Tomcat 6.0.37Apache Tomcat 9.0.0Apache Tomcat 7.0.7Apache Tomcat 7.0.42Apache Tomcat 7.0.60Apache Tomcat 6.0.28Apache Tomcat 7.0.37Apache Tomcat 7.0.29Apache Tomcat 7.0.45Apache Tomcat 8.0.11Apache Tomcat 8.0.24Apache Tomcat 8.0.36Apache Tomcat 7.0.68Apache Tomcat 8.0.23Apache Tomcat 8.5.3Apache Tomcat 8.0.33Apache Tomcat 7.0.13Apache Tomcat 8.0.6Apache Tomcat 8.0.21Apache Tomcat 8.0.32Apache Tomcat 6.0.45Apache Tomcat 7.0.41Apache Tomcat 7.0.16Apache Tomcat 8.0.25Apache Tomcat 8.0.18Apache Tomcat 7.0.25Apache Tomcat 6.0.12Apache Tomcat 7.0.54Apache Tomcat 8.0.13Apache Tomcat 8.0.14Apache Tomcat 8.0.9Apache Tomcat 7.0.38Apache Tomcat 7.0.21Apache Tomcat 7.0.24Apache Tomcat 7.0.17Apache Tomcat 8.0.16Apache Tomcat 7.0.9Apache Tomcat 6.0.13Apache Tomcat 8.0.8Apache Tomcat 8.0.28Apache Tomcat 7.0.64Apache Tomcat 8.5.1Apache Tomcat 7.0.33Apache Tomcat 8.0.26Apache Tomcat 8.0.35Apache Tomcat 8.0.34
4.3
CVSSv2
CVE-2017-7674
The CORS Filter in Apache Tomcat 9.0.0.M1 to 9.0.0.M21, 8.5.0 to 8.5.15, 8.0.0.RC1 to 8.0.44 and 7.0.41 to 7.0.78 did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances....
Apache Tomcat 9.0.0Apache Tomcat 8.5.6Apache Tomcat 8.5.7Apache Tomcat 8.5.15Apache Tomcat 8.0.37Apache Tomcat 8.0.44Apache Tomcat 7.0.78Apache Tomcat 7.0.77Apache Tomcat 7.0.41Apache Tomcat 7.0.42Apache Tomcat 7.0.49Apache Tomcat 8.0.17Apache Tomcat 8.0.26Apache Tomcat 7.0.58Apache Tomcat 8.0.1Apache Tomcat 7.0.59Apache Tomcat 7.0.50Apache Tomcat 8.0Apache Tomcat 7.0.67Apache Tomcat 7.0.68Apache Tomcat 8.0.33Apache Tomcat 8.0.25Apache Tomcat 8.0.18Apache Tomcat 8.0.9Apache Tomcat 8.0.8Apache Tomcat 8.0.34Apache Tomcat 8.0.4Apache Tomcat 8.0.30Apache Tomcat 7.0.62Apache Tomcat 7.0.53Apache Tomcat 8.5.2Apache Tomcat 7.0.55Apache Tomcat 8.5.9Apache Tomcat 8.0.40Apache Tomcat 7.0.63Apache Tomcat 8.5.0Apache Tomcat 7.0.46Apache Tomcat 7.0.72Apache Tomcat 8.0.5Apache Tomcat 7.0.71Apache Tomcat 8.0.0Apache Tomcat 8.5.10Apache Tomcat 8.0.39Apache Tomcat 8.0.12Apache Tomcat 7.0.74Apache Tomcat 8.0.22Apache Tomcat 7.0.44Apache Tomcat 8.0.29Apache Tomcat 7.0.52Apache Tomcat 7.0.60Apache Tomcat 7.0.45Apache Tomcat 8.0.21Apache Tomcat 8.0.41Apache Tomcat 7.0.54Apache Tomcat 8.0.38Apache Tomcat 7.0.43Apache Tomcat 8.0.13Apache Tomcat 8.0.14Apache Tomcat 8.5.8Apache Tomcat 8.5.12Apache Tomcat 8.5.11Apache Tomcat 8.5.1Apache Tomcat 7.0.73Apache Tomcat 8.0.10Apache Tomcat 8.0.7Apache Tomcat 8.5.4Apache Tomcat 8.0.2Apache Tomcat 8.0.20Apache Tomcat 8.0.31Apache Tomcat 7.0.76Apache Tomcat 7.0.65Apache Tomcat 8.0.19Apache Tomcat 8.0.27Apache Tomcat 8.0.15Apache Tomcat 7.0.48Apache Tomcat 7.0.66Apache Tomcat 8.5.13Apache Tomcat 8.5.14Apache Tomcat 7.0.69Apache Tomcat 8.0.42Apache Tomcat 8.0.11Apache Tomcat 8.0.24Apache Tomcat 8.0.36Apache Tomcat 8.5.5Apache Tomcat 8.0.23Apache Tomcat 8.5.3Apache Tomcat 7.0.47Apache Tomcat 8.0.6Apache Tomcat 8.0.32Apache Tomcat 7.0.75Apache Tomcat 8.0.35Apache Tomcat 7.0.61Apache Tomcat 8.0.3Apache Tomcat 7.0.57Apache Tomcat 8.0.43Apache Tomcat 8.0.16Apache Tomcat 7.0.56Apache Tomcat 8.0.28Apache Tomcat 7.0.64Apache Tomcat 7.0.70
5
CVSSv2
CVE-2016-5018
In Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 a malicious web application was able to bypass a configured SecurityManager via a Tomcat utility method that was accessible to web applications....
Apache Tomcat 6.0.5Apache Tomcat 6.0.6Apache Tomcat 6.0.13Apache Tomcat 6.0.14Apache Tomcat 6.0.15Apache Tomcat 6.0.22Apache Tomcat 6.0.23Apache Tomcat 6.0.30Apache Tomcat 6.0.31Apache Tomcat 6.0.38Apache Tomcat 6.0.39Apache Tomcat 8.0.10Apache Tomcat 7.0.53Apache Tomcat 7.0.34Apache Tomcat 7.0.1Apache Tomcat 7.0.2Apache Tomcat 8.0.2Apache Tomcat 7.0.26Apache Tomcat 7.0.18Apache Tomcat 7.0.44Apache Tomcat 7.0.69Apache Tomcat 7.0.52Apache Tomcat 7.0.60Apache Tomcat 7.0.19Apache Tomcat 7.0.10Apache Tomcat 7.0.35Apache Tomcat 7.0.61Apache Tomcat 8.0.3Apache Tomcat 7.0.43Apache Tomcat 7.0.27Apache Tomcat 7.0.9Apache Tomcat 6.0.40Apache Tomcat 7.0.70Apache Tomcat 8.0.7Apache Tomcat 6.0.34Apache Tomcat 7.0.5Apache Tomcat 8.0.20Apache Tomcat 7.0.22Apache Tomcat 8.5.0Apache Tomcat 7.0.39Apache Tomcat 7.0.65Apache Tomcat 8.0.19Apache Tomcat 6.0.44Apache Tomcat 7.0.6Apache Tomcat 7.0.14Apache Tomcat 6.0.10Apache Tomcat 8.0.27Apache Tomcat 8.0.15Apache Tomcat 7.0.48Apache Tomcat 8.0.0Apache Tomcat 7.0.23Apache Tomcat 7.0.66Apache Tomcat 6.0.9Apache Tomcat 9.0.0Apache Tomcat 8.0.11Apache Tomcat 8.0.36Apache Tomcat 7.0.13Apache Tomcat 7.0.47Apache Tomcat 8.0.6Apache Tomcat 7.0.31Apache Tomcat 7.0.30Apache Tomcat 6.0.1Apache Tomcat 8.0.35Apache Tomcat 6.0.18Apache Tomcat 7.0.57Apache Tomcat 7.0.38Apache Tomcat 6.0.43Apache Tomcat 7.0.40Apache Tomcat 6.0.2Apache Tomcat 7.0.56Apache Tomcat 6.0.26Apache Tomcat 8.0.28Apache Tomcat 6.0.19Apache Tomcat 6.0.27Apache Tomcat 6.0.35Apache Tomcat 8.0.4Apache Tomcat 6.0.33Apache Tomcat 7.0.49Apache Tomcat 7.0.12Apache Tomcat 7.0.62Apache Tomcat 8.0.17Apache Tomcat 7.0.20Apache Tomcat 6.0.11Apache Tomcat 8.0.26Apache Tomcat 7.0.58Apache Tomcat 7.0.8Apache Tomcat 7.0.55Apache Tomcat 8.5.4Apache Tomcat 6.0.25Apache Tomcat 7.0.63Apache Tomcat 6.0.7Apache Tomcat 6.0.4Apache Tomcat 8.0.31Apache Tomcat 7.0.46Apache Tomcat 8.0.5Apache Tomcat 7.0.28Apache Tomcat 8.0.1Apache Tomcat 7.0.59Apache Tomcat 7.0.0Apache Tomcat 6.0.42Apache Tomcat 7.0.50Apache Tomcat 8.0Apache Tomcat 6.0.20Apache Tomcat 8.0.12Apache Tomcat 6.0.21Apache Tomcat 6.0.29Apache Tomcat 7.0.11Apache Tomcat 7.0.67Apache Tomcat 6.0.3Apache Tomcat 6.0.24Apache Tomcat 8.0.22Apache Tomcat 6.0.37Apache Tomcat 6.0.17Apache Tomcat 7.0.7Apache Tomcat 7.0.42Apache Tomcat 6.0.32Apache Tomcat 6.0.28Apache Tomcat 7.0.37Apache Tomcat 7.0.29Apache Tomcat 7.0.45Apache Tomcat 8.0.24Apache Tomcat 7.0.68Apache Tomcat 8.0.23Apache Tomcat 8.5.3Apache Tomcat 6.0.0Apache Tomcat 8.0.33Apache Tomcat 8.0.21Apache Tomcat 8.0.32Apache Tomcat 6.0.45Apache Tomcat 7.0.41Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 8.0.25Apache Tomcat 6.0.41Apache Tomcat 7.0.36Apache Tomcat 8.0.18Apache Tomcat 7.0.25Apache Tomcat 6.0.12Apache Tomcat 7.0.54Apache Tomcat 8.0.13Apache Tomcat 8.0.14Apache Tomcat 8.0.9Apache Tomcat 7.0.32Apache Tomcat 7.0.21Apache Tomcat 7.0.24Apache Tomcat 7.0.17Apache Tomcat 8.0.16Apache Tomcat 7.0.4Apache Tomcat 8.0.8Apache Tomcat 7.0.3Apache Tomcat 8.0.34Apache Tomcat 7.0.64Apache Tomcat 6.0.16Apache Tomcat 6.0.36Apache Tomcat 7.0.33Apache Tomcat 6.0.8Apache Tomcat 8.0.30Apache Tomcat 8.5.2Apache Tomcat 8.0.29Apache Tomcat 8.5.1
4.3
CVSSv2
CVE-2013-4590
Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 8.x before 8.0.0-RC10 allows attackers to obtain "Tomcat internals" information by leveraging the presence of an untrusted web application with a context.xml, web.xml, *.jspx, *.tagx, or *.tld XML document containing...
Apache Tomcat 8.0.0Debian Debian Linux 7.0Apache Tomcat 6.0.33Apache Tomcat 6.0.32Apache Tomcat 6.0.24Apache Tomcat 6.0.20Apache Tomcat 6.0.16Apache Tomcat 6.0.15Apache Tomcat 6.0.1Apache Tomcat 6.0.0Apache Tomcat 5.5.5Apache Tomcat 5.5.4Apache Tomcat 5.5.3Apache Tomcat 5.0.8Apache Tomcat 5.5.14Apache Tomcat 5.5.7Apache Tomcat 5.0.7Apache Tomcat 5.5.6Apache Tomcat 5.5.30Apache Tomcat 5.5.21Apache Tomcat 5.5.22Apache Tomcat 6.0.10Apache Tomcat 6.0.17Apache Tomcat 5.5.31Apache Tomcat 6.0.28Apache Tomcat 5.5.13Apache Tomcat 5.5.24Apache Tomcat 6.0.18Apache Tomcat 5.5.29Apache Tomcat 5.5.23Apache Tomcat 6.0.26Apache Tomcat 6.0.27Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache Tomcat 5.5.27Apache Tomcat 3.2.1Apache Tomcat 5.0.19Apache Tomcat 5.5.12Apache Tomcat 3.2.2Apache Tomcat 5.5.11Apache Tomcat 5.5.28Apache Tomcat 5.0.9Apache Tomcat 5.5.35Apache Tomcat 5.5.20Apache Tomcat 5.5.15Apache Tomcat 5.0.2Apache Tomcat 5.0.10Apache Tomcat 5.0.21Apache Tomcat 5.0.26Apache Tomcat 6.0.31Apache Tomcat 5.0.6Apache Tomcat 5.0.27Apache Tomcat 4.1.29Apache Tomcat 6.0Apache Tomcat 5.0.18Apache Tomcat 6.0.14Apache Tomcat 5.5.2Apache Tomcat 5.0.28Apache Tomcat 5.0.29Apache Tomcat 5.5.0Apache Tomcat 4.1.1Apache Tomcat 5.0.13Apache Tomcat 5.5.34Apache Tomcat 4.1.3Apache Tomcat 6.0.2Apache Tomcat 5.5.16Apache Tomcat 4.1.0Apache Tomcat 5.5.19Apache Tomcat 4.0.0Apache Tomcat 4Apache Tomcat 6.0.30Apache Tomcat 6.0.13Apache Tomcat 5.0.11Apache Tomcat 5.0.3Apache Tomcat 5.0.12Apache Tomcat 3.1Apache Tomcat 4.1.2Apache Tomcat 4.0.4Apache Tomcat 4.1.36Apache Tomcat 4.1.9Apache Tomcat 5.5.18Apache Tomcat 5Apache Tomcat 6.0.11Apache Tomcat 5.0.14Apache Tomcat 4.1.24Apache Tomcat 5.5.10Apache Tomcat 5.0.22Apache Tomcat 5.5.1Apache Tomcat 6Apache Tomcat 5.5.26Apache Tomcat 5.0.15Apache Tomcat 3.3.2Apache Tomcat 5.0.30Apache Tomcat 5.0.23Apache Tomcat 1.1.3Apache Tomcat 3.2.4Apache Tomcat 3.0Apache Tomcat 6.0.29Apache Tomcat 6.0.3Apache Tomcat 5.0.0Apache Tomcat 4.1.31Apache Tomcat 5.0.16Apache Tomcat 4.0.6Apache Tomcat 5.5.32Apache Tomcat 5.5.9Apache Tomcat 4.0.3Apache Tomcat 5.5.25Apache TomcatApache Tomcat 5.5.33Apache Tomcat 4.0.1Apache Tomcat 3.3.1aApache Tomcat 5.0.5Apache Tomcat 6.0.12Apache Tomcat 4.1.12Apache Tomcat 4.1.28Apache Tomcat 4.1.15Apache Tomcat 4.1.10Apache Tomcat 5.5.8Apache Tomcat 5.0.17Apache Tomcat 3.1.1Apache Tomcat 4.0.2Apache Tomcat 5.5.17Apache Tomcat 4.0.5Apache Tomcat 5.0.4Apache Tomcat 3.2.3Apache Tomcat 5.0.25Apache Tomcat 5.0.1Apache Tomcat 3.2Apache Tomcat 3.3.1Apache Tomcat 6.0.19Apache Tomcat 5.0.24Apache Tomcat 3.3Apache Tomcat 7.0.50Apache Tomcat 7.0.46Apache Tomcat 7.0.4Apache Tomcat 7.0.32Apache Tomcat 7.0.31Apache Tomcat 7.0.25Apache Tomcat 7.0.24Apache Tomcat 7.0.19Apache Tomcat 7.0.18Apache Tomcat 7.0.10Apache Tomcat 7.0.2Apache Tomcat 7.0.34Apache Tomcat 7.0.1Apache Tomcat 7.0.22Apache Tomcat 7.0.39Apache Tomcat 7.0.26Apache Tomcat 7.0.0Apache Tomcat 7.0.23Apache Tomcat 7.0.44Apache Tomcat 7.0.45Apache Tomcat 7.0.41Apache Tomcat 7.0.30Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.38Apache Tomcat 7.0.27Apache Tomcat 7.0.17Apache Tomcat 7.0.40Apache Tomcat 7.0.3Apache Tomcat 7.0.33Apache Tomcat 7.0.12Apache Tomcat 7.0.20Apache Tomcat 7.0.28Apache Tomcat 7.0.14Apache Tomcat 7.0.11Apache Tomcat 7.0.42Apache Tomcat 7.0.37Apache Tomcat 7.0.29Apache Tomcat 7.0.13Apache Tomcat 7.0.36Apache Tomcat 7.0.35Apache Tomcat 7.0.43Apache Tomcat 7.0.21Oracle Solaris 11.2
5
CVSSv2
CVE-2014-0075
Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed...
Apache Tomcat 7.0.1Apache Tomcat 7.0.10Apache Tomcat 7.0.17Apache Tomcat 7.0.18Apache Tomcat 7.0.23Apache Tomcat 7.0.24Apache Tomcat 7.0.31Apache Tomcat 7.0.32Apache Tomcat 7.0.39Apache Tomcat 7.0.4Apache Tomcat 7.0.45Apache Tomcat 7.0.2Apache Tomcat 7.0.12Apache Tomcat 7.0.20Apache Tomcat 7.0.8Apache Tomcat 7.0.5Apache Tomcat 7.0.46Apache Tomcat 7.0.28Apache Tomcat 7.0.50Apache Tomcat 7.0.14Apache Tomcat 7.0.11Apache Tomcat 7.0.52Apache Tomcat 7.0.42Apache Tomcat 7.0.29Apache Tomcat 7.0.13Apache Tomcat 7.0.47Apache Tomcat 7.0.41Apache Tomcat 7.0.19Apache Tomcat 7.0.36Apache Tomcat 7.0.25Apache Tomcat 7.0.35Apache Tomcat 7.0.9Apache Tomcat 7.0.49Apache Tomcat 7.0.34Apache Tomcat 7.0.22Apache Tomcat 7.0.26Apache Tomcat 7.0.0Apache Tomcat 7.0.6Apache Tomcat 7.0.48Apache Tomcat 7.0.44Apache Tomcat 7.0.7Apache Tomcat 7.0.37Apache Tomcat 7.0.30Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.43Apache Tomcat 7.0.38Apache Tomcat 7.0.21Apache Tomcat 7.0.27Apache Tomcat 7.0.40Apache Tomcat 7.0.3Apache Tomcat 7.0.33Apache Tomcat 8.0.1Apache Tomcat 8.0.0Apache Tomcat 8.0.3Apache Tomcat 6.0.10Apache Tomcat 6.0.11Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.27Apache Tomcat 6.0.28Apache Tomcat 6.0.36Apache Tomcat 6.0.37Apache Tomcat 6.0.7Apache Tomcat 6.0Apache Tomcat 6.0.6Apache Tomcat 6.0.4Apache TomcatApache Tomcat 6Apache Tomcat 6.0.15Apache Tomcat 6.0.20Apache Tomcat 6.0.9Apache Tomcat 6.0.31Apache Tomcat 6.0.29Apache Tomcat 6.0.3Apache Tomcat 6.0.32Apache Tomcat 6.0.0Apache Tomcat 6.0.14Apache Tomcat 6.0.12Apache Tomcat 6.0.2Apache Tomcat 6.0.5Apache Tomcat 6.0.30Apache Tomcat 6.0.13Apache Tomcat 6.0.33Apache Tomcat 6.0.1Apache Tomcat 6.0.24Apache Tomcat 6.0.17Apache Tomcat 6.0.8Apache Tomcat 6.0.26Apache Tomcat 6.0.35Apache Tomcat 6.0.16
4.3
CVSSv2
CVE-2014-0119
Apache Tomcat before 6.0.40, 7.x before 7.0.54, and 8.x before 8.0.6 does not properly constrain the class loader that accesses the XML parser used with an XSLT stylesheet, which allows remote attackers to (1) read arbitrary files via a crafted web application that provides an...
Apache Tomcat 8.0.0Apache Tomcat 8.0.1Apache Tomcat 8.0.5Apache Tomcat 8.0.3Apache Tomcat 6.0.0Apache Tomcat 6.0.1Apache Tomcat 6.0.15Apache Tomcat 6.0.16Apache Tomcat 6.0.24Apache Tomcat 6.0.26Apache Tomcat 6.0.32Apache Tomcat 6.0.33Apache Tomcat 6.0.6Apache Tomcat 6.0.11Apache TomcatApache Tomcat 6Apache Tomcat 6.0.7Apache Tomcat 6.0.4Apache Tomcat 6.0.10Apache Tomcat 6.0.29Apache Tomcat 6.0.3Apache Tomcat 6.0.37Apache Tomcat 6.0.17Apache Tomcat 6.0.28Apache Tomcat 6.0.12Apache Tomcat 6.0.18Apache Tomcat 6.0.2Apache Tomcat 6.0.19Apache Tomcat 6.0.27Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache Tomcat 6.0.8Apache Tomcat 6.0.20Apache Tomcat 6.0.9Apache Tomcat 6.0.31Apache Tomcat 6.0Apache Tomcat 6.0.14Apache Tomcat 6.0.5Apache Tomcat 6.0.30Apache Tomcat 6.0.13Apache Tomcat 7.0.52Apache Tomcat 7.0.12Apache Tomcat 7.0.13Apache Tomcat 7.0.2Apache Tomcat 7.0.27Apache Tomcat 7.0.28Apache Tomcat 7.0.34Apache Tomcat 7.0.35Apache Tomcat 7.0.40Apache Tomcat 7.0.41Apache Tomcat 7.0.49Apache Tomcat 7.0.53Apache Tomcat 7.0.20Apache Tomcat 7.0.8Apache Tomcat 7.0.1Apache Tomcat 7.0.5Apache Tomcat 7.0.39Apache Tomcat 7.0.46Apache Tomcat 7.0.0Apache Tomcat 7.0.14Apache Tomcat 7.0.23Apache Tomcat 7.0.7Apache Tomcat 7.0.42Apache Tomcat 7.0.45Apache Tomcat 7.0.31Apache Tomcat 7.0.30Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.38Apache Tomcat 7.0.24Apache Tomcat 7.0.17Apache Tomcat 7.0.4Apache Tomcat 7.0.22Apache Tomcat 7.0.26Apache Tomcat 7.0.50Apache Tomcat 7.0.6Apache Tomcat 7.0.18Apache Tomcat 7.0.48Apache Tomcat 7.0.11Apache Tomcat 7.0.44Apache Tomcat 7.0.37Apache Tomcat 7.0.29Apache Tomcat 7.0.47Apache Tomcat 7.0.19Apache Tomcat 7.0.10Apache Tomcat 7.0.36Apache Tomcat 7.0.25Apache Tomcat 7.0.43Apache Tomcat 7.0.32Apache Tomcat 7.0.21Apache Tomcat 7.0.9Apache Tomcat 7.0.3Apache Tomcat 7.0.33
6.4
CVSSv2
CVE-2014-0227
java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat 6.x before 6.0.42, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle attempts to continue reading data after an error has occurred, which allows remote attackers to conduct HTTP request...
Apache Tomcat 6.0.2Apache Tomcat 6.0.7Apache Tomcat 6.0.11Apache Tomcat 6.0.12Apache Tomcat 6.0.20Apache Tomcat 6.0.24Apache Tomcat 6.0.32Apache Tomcat 6.0.33Apache Tomcat 7.0.0Apache Tomcat 6.0.0Apache Tomcat 7.0.53Apache Tomcat 7.0.1Apache Tomcat 7.0.39Apache Tomcat 7.0.46Apache Tomcat 8.0.1Apache Tomcat 7.0.6Apache Tomcat 7.0.18Apache Tomcat 7.0.23Apache Tomcat 6.0.9Apache Tomcat 7.0.45Apache Tomcat 7.0.31Apache Tomcat 7.0.30Apache Tomcat 7.0.54Apache Tomcat 8.0.0Apache Tomcat 7.0.32Apache Tomcat 6.0.5Apache Tomcat 7.0.24Apache Tomcat 7.0.17Apache Tomcat 7.0.4Apache Tomcat 6.0.8Apache Tomcat 7.0.2Apache Tomcat 7.0.49Apache Tomcat 6.0.39Apache Tomcat 6.0.4Apache Tomcat 7.0.20Apache Tomcat 7.0.5Apache Tomcat 7.0.22Apache Tomcat 6.0.15Apache Tomcat 7.0.28Apache Tomcat 7.0.14Apache Tomcat 6.0.10Apache Tomcat 6.0.31Apache Tomcat 6.0.29Apache Tomcat 6.0.1Apache Tomcat 6.0.37Apache Tomcat 6.0.17Apache Tomcat 7.0.42Apache Tomcat 6.0.28Apache Tomcat 7.0.37Apache Tomcat 7.0.29Apache Tomcat 7.0.13Apache Tomcat 7.0.41Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 6.0.41Apache Tomcat 7.0.36Apache Tomcat 7.0.35Apache Tomcat 6.0.18Apache Tomcat 7.0.38Apache Tomcat 7.0.21Apache Tomcat 7.0.27Apache Tomcat 6.0.30Apache Tomcat 7.0.9Apache Tomcat 8.0.8Apache Tomcat 7.0.3Apache Tomcat 6.0.19Apache Tomcat 6.0.16Apache Tomcat 7.0.12Apache Tomcat 6.0.6Apache Tomcat 7.0.34Apache Tomcat 7.0.8Apache Tomcat 7.0.26Apache Tomcat 8.0.5Apache Tomcat 7.0.50Apache Tomcat 7.0.48Apache Tomcat 7.0.11Apache Tomcat 6.0.3Apache Tomcat 7.0.44Apache Tomcat 7.0.7Apache Tomcat 7.0.52Apache Tomcat 7.0.47Apache Tomcat 6.0.14Apache Tomcat 7.0.19Apache Tomcat 7.0.10Apache Tomcat 7.0.25Apache Tomcat 8.0.3Apache Tomcat 7.0.43Apache Tomcat 7.0.40Apache Tomcat 6.0.13Apache Tomcat 6.0.26Apache Tomcat 6.0.27Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache Tomcat 7.0.33
4.3
CVSSv2
CVE-2014-0099
Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4, when operated behind a reverse proxy, allows remote attackers to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP...
Apache Tomcat 6.0.1Apache Tomcat 6.0.10Apache Tomcat 6.0.17Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.27Apache Tomcat 6.0.28Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache TomcatApache Tomcat 6Apache Tomcat 6.0.33Apache Tomcat 6.0.0Apache Tomcat 6.0.6Apache Tomcat 6.0.11Apache Tomcat 6.0.7Apache Tomcat 6.0.4Apache Tomcat 6.0.15Apache Tomcat 6.0.29Apache Tomcat 6.0.3Apache Tomcat 6.0.24Apache Tomcat 6.0.37Apache Tomcat 6.0.32Apache Tomcat 6.0.12Apache Tomcat 6.0.2Apache Tomcat 6.0.8Apache Tomcat 6.0.26Apache Tomcat 6.0.16Apache Tomcat 6.0.20Apache Tomcat 6.0.9Apache Tomcat 6.0.31Apache Tomcat 6.0Apache Tomcat 6.0.14Apache Tomcat 6.0.5Apache Tomcat 6.0.30Apache Tomcat 6.0.13Apache Tomcat 8.0.0Apache Tomcat 8.0.3Apache Tomcat 8.0.1Apache Tomcat 7.0.10Apache Tomcat 7.0.11Apache Tomcat 7.0.19Apache Tomcat 7.0.2Apache Tomcat 7.0.25Apache Tomcat 7.0.26Apache Tomcat 7.0.32Apache Tomcat 7.0.33Apache Tomcat 7.0.34Apache Tomcat 7.0.4Apache Tomcat 7.0.52Apache Tomcat 7.0.1Apache Tomcat 7.0.22Apache Tomcat 7.0.0Apache Tomcat 7.0.50Apache Tomcat 7.0.6Apache Tomcat 7.0.18Apache Tomcat 7.0.48Apache Tomcat 7.0.23Apache Tomcat 7.0.44Apache Tomcat 7.0.37Apache Tomcat 7.0.29Apache Tomcat 7.0.47Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.43Apache Tomcat 7.0.38Apache Tomcat 7.0.21Apache Tomcat 7.0.17Apache Tomcat 7.0.40Apache Tomcat 7.0.9Apache Tomcat 7.0.3Apache Tomcat 7.0.49Apache Tomcat 7.0.12Apache Tomcat 7.0.20Apache Tomcat 7.0.8Apache Tomcat 7.0.5Apache Tomcat 7.0.39Apache Tomcat 7.0.46Apache Tomcat 7.0.28Apache Tomcat 7.0.14Apache Tomcat 7.0.7Apache Tomcat 7.0.42Apache Tomcat 7.0.45Apache Tomcat 7.0.13Apache Tomcat 7.0.41Apache Tomcat 7.0.31Apache Tomcat 7.0.30Apache Tomcat 7.0.36Apache Tomcat 7.0.35Apache Tomcat 7.0.27Apache Tomcat 7.0.24
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-19158hardcodedCVE-2021-37909memory leakCVE-2021-30769CVE-2021-39211CVE-2021-30632validationCVE-2021-33690
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook