Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apache tomcat 8.0.0 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2014-0095
java/org/apache/coyote/ajp/AbstractAjpProcessor.java in Apache Tomcat 8.x before 8.0.4 allows remote attackers to cause a denial of service (thread consumption) by using a "Content-Length: 0" AJP request to trigger a hang in request processing....
Apache Tomcat 8.0.1Apache Tomcat 8.0.0Apache Tomcat 8.0.3
NA
CVE-2014-0099
Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4, when operated behind a reverse proxy, allows remote attackers to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP...
Apache Tomcat 6.0.1Apache Tomcat 6.0.10Apache Tomcat 6.0.17Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.27Apache Tomcat 6.0.28Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache TomcatApache Tomcat 6Apache Tomcat 6.0.11Apache Tomcat 6.0.12Apache Tomcat 6.0.2Apache Tomcat 6.0.29Apache Tomcat 6.0.3Apache Tomcat 6.0.37Apache Tomcat 6.0.4Apache Tomcat 6.0.8Apache Tomcat 6.0.0Apache Tomcat 6.0.15Apache Tomcat 6.0.16Apache Tomcat 6.0.24Apache Tomcat 6.0.26Apache Tomcat 6.0.32Apache Tomcat 6.0.33Apache Tomcat 6.0.6Apache Tomcat 6.0.7Apache Tomcat 6.0Apache Tomcat 6.0.13Apache Tomcat 6.0.14Apache Tomcat 6.0.20Apache Tomcat 6.0.30Apache Tomcat 6.0.31Apache Tomcat 6.0.5Apache Tomcat 6.0.9Apache Tomcat 8.0.0Apache Tomcat 8.0.3Apache Tomcat 8.0.1Apache Tomcat 7.0.10Apache Tomcat 7.0.11Apache Tomcat 7.0.19Apache Tomcat 7.0.2Apache Tomcat 7.0.25Apache Tomcat 7.0.26Apache Tomcat 7.0.32Apache Tomcat 7.0.33Apache Tomcat 7.0.34Apache Tomcat 7.0.4Apache Tomcat 7.0.52Apache Tomcat 7.0.0Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.21Apache Tomcat 7.0.22Apache Tomcat 7.0.29Apache Tomcat 7.0.3Apache Tomcat 7.0.37Apache Tomcat 7.0.38Apache Tomcat 7.0.43Apache Tomcat 7.0.44Apache Tomcat 7.0.50Apache Tomcat 7.0.6Apache Tomcat 7.0.40Apache Tomcat 7.0.47Apache Tomcat 7.0.48Apache Tomcat 7.0.9Apache Tomcat 7.0.1Apache Tomcat 7.0.17Apache Tomcat 7.0.18Apache Tomcat 7.0.23Apache Tomcat 7.0.24Apache Tomcat 7.0.30Apache Tomcat 7.0.31Apache Tomcat 7.0.39Apache Tomcat 7.0.45Apache Tomcat 7.0.46Apache Tomcat 7.0.7Apache Tomcat 7.0.8Apache Tomcat 7.0.12Apache Tomcat 7.0.13Apache Tomcat 7.0.14Apache Tomcat 7.0.20Apache Tomcat 7.0.27Apache Tomcat 7.0.28Apache Tomcat 7.0.35Apache Tomcat 7.0.36Apache Tomcat 7.0.41Apache Tomcat 7.0.42Apache Tomcat 7.0.49Apache Tomcat 7.0.5
NA
CVE-2014-0230
Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a...
Apache Tomcat 6.0.10Apache Tomcat 6.0.11Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.28Apache Tomcat 6.0.29Apache Tomcat 6.0.36Apache Tomcat 6.0.37Apache Tomcat 6.0.6Apache Tomcat 7.0.0Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.21Apache Tomcat 7.0.22Apache Tomcat 7.0.3Apache Tomcat 7.0.30Apache Tomcat 7.0.37Apache Tomcat 7.0.38Apache Tomcat 7.0.43Apache Tomcat 7.0.44Apache Tomcat 7.0.52Apache Tomcat 7.0.53Apache Tomcat 8.0.0Apache Tomcat 6.0.0Apache Tomcat 6.0.14Apache Tomcat 6.0.15Apache Tomcat 6.0.2Apache Tomcat 6.0.20Apache Tomcat 6.0.31Apache Tomcat 6.0.32Apache Tomcat 6.0.4Apache Tomcat 6.0.41Apache Tomcat 6.0.7Apache Tomcat 6.0.8Apache Tomcat 7.0.11Apache Tomcat 7.0.12Apache Tomcat 7.0.19Apache Tomcat 7.0.2Apache Tomcat 7.0.25Apache Tomcat 7.0.26Apache Tomcat 7.0.27Apache Tomcat 7.0.33Apache Tomcat 7.0.34Apache Tomcat 7.0.4Apache Tomcat 7.0.40Apache Tomcat 7.0.48Apache Tomcat 7.0.49Apache Tomcat 7.0.7Apache Tomcat 7.0.8Apache Tomcat 8.0.3Apache Tomcat 8.0.5Apache Tomcat 6.0.12Apache Tomcat 6.0.13Apache Tomcat 6.0.3Apache Tomcat 6.0.30Apache Tomcat 6.0.39Apache Tomcat 7.0.1Apache Tomcat 7.0.10Apache Tomcat 7.0.17Apache Tomcat 7.0.18Apache Tomcat 7.0.23Apache Tomcat 7.0.24Apache Tomcat 7.0.31Apache Tomcat 7.0.32Apache Tomcat 7.0.39Apache Tomcat 7.0.45Apache Tomcat 7.0.46Apache Tomcat 7.0.47Apache Tomcat 7.0.54Apache Tomcat 7.0.6Apache Tomcat 8.0.1Apache Tomcat 6.0.1Apache Tomcat 6.0.16Apache Tomcat 6.0.17Apache Tomcat 6.0.24Apache Tomcat 6.0.26Apache Tomcat 6.0.27Apache Tomcat 6.0.33Apache Tomcat 6.0.35Apache Tomcat 6.0.43Apache Tomcat 6.0.5Apache Tomcat 6.0.9Apache Tomcat 7.0.13Apache Tomcat 7.0.14Apache Tomcat 7.0.20Apache Tomcat 7.0.28Apache Tomcat 7.0.29Apache Tomcat 7.0.35Apache Tomcat 7.0.36Apache Tomcat 7.0.41Apache Tomcat 7.0.42Apache Tomcat 7.0.5Apache Tomcat 7.0.50Apache Tomcat 7.0.9Apache Tomcat 8.0.8Oracle Virtualization 4.71Oracle Virtualization 4.63Oracle Virtualization 5.1
NA
CVE-2013-4322
Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 8.x before 8.0.0-RC10 processes chunked transfer coding without properly handling (1) a large total amount of chunked data or (2) whitespace characters in an HTTP header value within a trailer field, which allows remote...
Apache Tomcat 7.0.50Apache Tomcat 7.0.46Apache Tomcat 7.0.45Apache Tomcat 7.0.4Apache Tomcat 7.0.39Apache Tomcat 7.0.32Apache Tomcat 7.0.31Apache Tomcat 7.0.40Apache Tomcat 7.0.34Apache Tomcat 7.0.33Apache Tomcat 7.0.27Apache Tomcat 7.0.26Apache Tomcat 7.0.42Apache Tomcat 7.0.41Apache Tomcat 7.0.36Apache Tomcat 7.0.35Apache Tomcat 7.0.29Apache Tomcat 7.0.28Apache Tomcat 7.0.20Apache Tomcat 7.0.2Apache Tomcat 7.0.14Apache Tomcat 7.0.13Apache Tomcat 7.0.44Apache Tomcat 7.0.43Apache Tomcat 7.0.38Apache Tomcat 7.0.37Apache Tomcat 7.0.30Apache Tomcat 7.0.3Apache Tomcat 7.0.22Apache Tomcat 7.0.21Apache Tomcat 7.0.16Apache Tomcat 7.0.15Apache Tomcat 7.0.0Apache Tomcat 7.0.19Apache Tomcat 7.0.12Apache Tomcat 7.0.11Apache Tomcat 7.0.25Apache Tomcat 7.0.24Apache Tomcat 7.0.23Apache Tomcat 7.0.18Apache Tomcat 7.0.17Apache Tomcat 7.0.10Apache Tomcat 7.0.1Apache TomcatApache Tomcat 6.0.29Apache Tomcat 6.0.28Apache Tomcat 6.0.2Apache Tomcat 6.0.19Apache Tomcat 6.0.12Apache Tomcat 6.0.11Apache Tomcat 6.0.10Apache Tomcat 5.5.9Apache Tomcat 6.0.30Apache Tomcat 6.0.3Apache Tomcat 6.0.14Apache Tomcat 6.0.13Apache Tomcat 6.0Apache Tomcat 6Apache Tomcat 5.5.35Apache Tomcat 5.5.34Apache Tomcat 5.5.28Apache Tomcat 5.5.27Apache Tomcat 5.5.26Apache Tomcat 5.5.2Apache Tomcat 5.5.19Apache Tomcat 5.5.12Apache Tomcat 5.5.11Apache Tomcat 5.0.5Apache Tomcat 5.0.4Apache Tomcat 5.0.25Apache Tomcat 5.0.24Apache Tomcat 5.0.17Apache Tomcat 5.0.16Apache Tomcat 5.0.0Apache Tomcat 5Apache Tomcat 4.1.28Apache Tomcat 4.1.24Apache Tomcat 4.0.6Apache Tomcat 4.0.5Apache Tomcat 3.3.1aApache Tomcat 3.3.1Apache Tomcat 3.2Apache Tomcat 3.1.1Apache Tomcat 5.5.8Apache Tomcat 5.5.33Apache Tomcat 5.5.32Apache Tomcat 5.5.25Apache Tomcat 5.5.24Apache Tomcat 5.5.18Apache Tomcat 5.5.17Apache Tomcat 5.5.10Apache Tomcat 5.5.1Apache Tomcat 5.0.30Apache Tomcat 5.0.3Apache Tomcat 5.0.23Apache Tomcat 5.0.22Apache Tomcat 5.0.15Apache Tomcat 5.0.14Apache Tomcat 4.1.9Apache Tomcat 4.1.36Apache Tomcat 4.1.2Apache Tomcat 4.1.15Apache Tomcat 4.0.4Apache Tomcat 4.0.3Apache Tomcat 3.3Apache Tomcat 3.2.4Apache Tomcat 3.1Apache Tomcat 3.0Apache Tomcat 6.0.36Apache Tomcat 6.0.35Apache Tomcat 6.0.33Apache Tomcat 6.0.27Apache Tomcat 6.0.26Apache Tomcat 6.0.18Apache Tomcat 6.0.17Apache Tomcat 6.0.1Apache Tomcat 5.5.7Apache Tomcat 5.5.6Apache Tomcat 5.5.31Apache Tomcat 5.5.30Apache Tomcat 5.5.23Apache Tomcat 5.5.22Apache Tomcat 5.5.16Apache Tomcat 5.5.15Apache Tomcat 5.5.0Apache Tomcat 5.0.9Apache Tomcat 5.0.29Apache Tomcat 5.0.28Apache Tomcat 5.0.21Apache Tomcat 5.0.2Apache Tomcat 5.0.13Apache Tomcat 5.0.12Apache Tomcat 4.1.31Apache Tomcat 4.1.3Apache Tomcat 4.1.12Apache Tomcat 4.1.10Apache Tomcat 4.0.2Apache Tomcat 4.0.1Apache Tomcat 4.0.0Apache Tomcat 3.2.3Apache Tomcat 3.2.2Apache Tomcat 1.1.3Apache Tomcat 6.0.32Apache Tomcat 6.0.31Apache Tomcat 6.0.24Apache Tomcat 6.0.20Apache Tomcat 6.0.16Apache Tomcat 6.0.15Apache Tomcat 6.0.0Apache Tomcat 5.5.5Apache Tomcat 5.5.4Apache Tomcat 5.5.3Apache Tomcat 5.5.29Apache Tomcat 5.5.21Apache Tomcat 5.5.20Apache Tomcat 5.5.14Apache Tomcat 5.5.13Apache Tomcat 5.0.8Apache Tomcat 5.0.7Apache Tomcat 5.0.6Apache Tomcat 5.0.27Apache Tomcat 5.0.26Apache Tomcat 5.0.19Apache Tomcat 5.0.18Apache Tomcat 5.0.11Apache Tomcat 5.0.10Apache Tomcat 5.0.1Apache Tomcat 4.1.29Apache Tomcat 4.1.1Apache Tomcat 4.1.0Apache Tomcat 4Apache Tomcat 3.3.2Apache Tomcat 3.2.1Apache Tomcat 8.0.0
8.1
CVSSv3
CVE-2015-5346
Session fixation vulnerability in Apache Tomcat 7.x before 7.0.66, 8.x before 8.0.30, and 9.x before 9.0.0.M2, when different session settings are used for deployments of multiple versions of the same web application, might allow remote attackers to hijack web sessions by...
Apache Tomcat 8.0.29Apache Tomcat 8.0.28Apache Tomcat 8.0.11Apache Tomcat 8.0.12Apache Tomcat 8.0.23Apache Tomcat 8.0.24Apache Tomcat 7.0.14Apache Tomcat 7.0.16Apache Tomcat 7.0.25Apache Tomcat 7.0.26Apache Tomcat 7.0.35Apache Tomcat 7.0.37Apache Tomcat 7.0.5Apache Tomcat 7.0.50Apache Tomcat 7.0.59Apache Tomcat 7.0.6Apache Tomcat 8.0.27Apache Tomcat 8.0.0Apache Tomcat 8.0.14Apache Tomcat 8.0.15Apache Tomcat 8.0.26Apache Tomcat 7.0.65Apache Tomcat 7.0.19Apache Tomcat 7.0.2Apache Tomcat 7.0.27Apache Tomcat 7.0.28Apache Tomcat 7.0.39Apache Tomcat 7.0.4Apache Tomcat 7.0.52Apache Tomcat 7.0.53Apache Tomcat 7.0.61Apache Tomcat 7.0.62Apache Tomcat 7.0.63Apache Tomcat 8.0.17Apache Tomcat 8.0.18Apache Tomcat 7.0.0Apache Tomcat 7.0.10Apache Tomcat 7.0.20Apache Tomcat 7.0.21Apache Tomcat 7.0.29Apache Tomcat 7.0.30Apache Tomcat 7.0.32Apache Tomcat 7.0.40Apache Tomcat 7.0.41Apache Tomcat 7.0.54Apache Tomcat 7.0.55Apache Tomcat 7.0.64Apache Tomcat 9.0.0Apache Tomcat 8.0.3Apache Tomcat 8.0.1Apache Tomcat 8.0.20Apache Tomcat 8.0.21Apache Tomcat 8.0.22Apache Tomcat 7.0.11Apache Tomcat 7.0.12Apache Tomcat 7.0.22Apache Tomcat 7.0.23Apache Tomcat 7.0.33Apache Tomcat 7.0.34Apache Tomcat 7.0.42Apache Tomcat 7.0.47Apache Tomcat 7.0.56Apache Tomcat 7.0.57Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 15.10Debian Debian Linux 8.0Debian Debian Linux 7.0
8.1
CVSSv3
CVE-2017-12617
When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.0 to 7.0.81 with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default servlet to false) it was possible to upload a JSP file to the server via...
Apache Tomcat 9.0.0Apache Tomcat 8.5.1Apache Tomcat 8.5.2Apache Tomcat 8.5.9Apache Tomcat 8.5.10Apache Tomcat 8.5.17Apache Tomcat 8.5.18Apache Tomcat 8.0.0Apache Tomcat 8.0.1Apache Tomcat 8.0.11Apache Tomcat 8.0.12Apache Tomcat 8.0.19Apache Tomcat 8.0.20Apache Tomcat 8.0.28Apache Tomcat 8.0.29Apache Tomcat 8.0.36Apache Tomcat 8.0.37Apache Tomcat 8.0.44Apache Tomcat 8.0.45Apache Tomcat 7.0.4Apache Tomcat 7.0.5Apache Tomcat 7.0.11Apache Tomcat 7.0.12Apache Tomcat 7.0.19Apache Tomcat 7.0.20Apache Tomcat 7.0.21Apache Tomcat 7.0.28Apache Tomcat 7.0.29Apache Tomcat 7.0.36Apache Tomcat 7.0.37Apache Tomcat 7.0.45Apache Tomcat 7.0.46Apache Tomcat 7.0.55Apache Tomcat 7.0.56Apache Tomcat 7.0.63Apache Tomcat 7.0.64Apache Tomcat 7.0.72Apache Tomcat 7.0.73Apache Tomcat 7.0.81Apache Tomcat 8.5.5Apache Tomcat 8.5.6Apache Tomcat 8.5.13Apache Tomcat 8.5.14Apache Tomcat 8.5.21Apache Tomcat 8.5.22Apache Tomcat 8.0.6Apache Tomcat 8.0.7Apache Tomcat 8.0.15Apache Tomcat 8.0.16Apache Tomcat 8.0.23Apache Tomcat 8.0.24Apache Tomcat 8.0.25Apache Tomcat 8.0.32Apache Tomcat 8.0.33Apache Tomcat 8.0.40Apache Tomcat 8.0.41Apache Tomcat 7.0.2Apache Tomcat 7.0.7Apache Tomcat 7.0.8Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.24Apache Tomcat 7.0.25Apache Tomcat 7.0.32Apache Tomcat 7.0.33Apache Tomcat 7.0.40Apache Tomcat 7.0.41Apache Tomcat 7.0.49Apache Tomcat 7.0.50Apache Tomcat 7.0.59Apache Tomcat 7.0.60Apache Tomcat 7.0.67Apache Tomcat 7.0.68Apache Tomcat 7.0.76Apache Tomcat 7.0.77Apache Tomcat 8.5.0Apache Tomcat 8.5.7Apache Tomcat 8.5.8Apache Tomcat 8.5.15Apache Tomcat 8.5.16Apache Tomcat 8.0.9Apache Tomcat 8.0.10Apache Tomcat 8.0.17Apache Tomcat 8.0.18Apache Tomcat 8.0.26Apache Tomcat 8.0.27Apache Tomcat 8.0.34Apache Tomcat 8.0.35Apache Tomcat 8.0.42Apache Tomcat 8.0.43Apache Tomcat 7.0.3Apache Tomcat 7.0.9Apache Tomcat 7.0.10Apache Tomcat 7.0.17Apache Tomcat 7.0.18Apache Tomcat 7.0.26Apache Tomcat 7.0.27Apache Tomcat 7.0.34Apache Tomcat 7.0.35Apache Tomcat 7.0.42Apache Tomcat 7.0.43Apache Tomcat 7.0.44Apache Tomcat 7.0.51Apache Tomcat 7.0.54Apache Tomcat 7.0.61Apache Tomcat 7.0.62Apache Tomcat 7.0.69Apache Tomcat 7.0.70Apache Tomcat 7.0.71Apache Tomcat 7.0.79Apache Tomcat 7.0.80Apache Tomcat 8.5.3Apache Tomcat 8.5.4Apache Tomcat 8.5.11Apache Tomcat 8.5.12Apache Tomcat 8.5.19Apache Tomcat 8.5.20Apache Tomcat 8.0.2Apache Tomcat 8.0.4Apache Tomcat 8.0.13Apache Tomcat 8.0.14Apache Tomcat 8.0.21Apache Tomcat 8.0.22Apache Tomcat 8.0.30Apache Tomcat 8.0.31Apache Tomcat 8.0.38Apache Tomcat 8.0.39Apache Tomcat 8.0.46Apache Tomcat 7.0.0Apache Tomcat 7.0.1Apache Tomcat 7.0.6Apache Tomcat 7.0.13Apache Tomcat 7.0.14Apache Tomcat 7.0.22Apache Tomcat 7.0.23Apache Tomcat 7.0.30Apache Tomcat 7.0.31Apache Tomcat 7.0.38Apache Tomcat 7.0.39Apache Tomcat 7.0.47Apache Tomcat 7.0.48Apache Tomcat 7.0.57Apache Tomcat 7.0.58Apache Tomcat 7.0.65Apache Tomcat 7.0.66Apache Tomcat 7.0.74Apache Tomcat 7.0.75
6.3
CVSSv3
CVE-2016-0763
The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M3 does not consider whether ResourceLinkFactory.setGlobalContext callers are authorized, which allows remote...
Debian Debian Linux 8.0Debian Debian Linux 7.0Apache Tomcat 8.0.30Apache Tomcat 8.0.3Apache Tomcat 8.0.24Apache Tomcat 8.0.23Apache Tomcat 8.0.12Apache Tomcat 8.0.11Apache Tomcat 7.0.63Apache Tomcat 7.0.62Apache Tomcat 7.0.54Apache Tomcat 7.0.53Apache Tomcat 7.0.4Apache Tomcat 8.0.27Apache Tomcat 7.0.67Apache Tomcat 8.0.20Apache Tomcat 8.0.18Apache Tomcat 8.0.17Apache Tomcat 8.0.0Apache Tomcat 7.0.59Apache Tomcat 7.0.57Apache Tomcat 7.0.47Apache Tomcat 7.0.42Apache Tomcat 7.0.34Apache Tomcat 7.0.33Apache Tomcat 7.0.25Apache Tomcat 7.0.23Apache Tomcat 7.0.12Apache Tomcat 7.0.11Apache Tomcat 9.0.0Apache Tomcat 7.0.65Apache Tomcat 8.0.26Apache Tomcat 8.0.15Apache Tomcat 8.0.14Apache Tomcat 7.0.64Apache Tomcat 7.0.56Apache Tomcat 7.0.55Apache Tomcat 7.0.41Apache Tomcat 7.0.40Apache Tomcat 7.0.32Apache Tomcat 7.0.30Apache Tomcat 7.0.22Apache Tomcat 7.0.21Apache Tomcat 7.0.10Apache Tomcat 7.0.0Apache Tomcat 7.0.39Apache Tomcat 7.0.29Apache Tomcat 7.0.28Apache Tomcat 7.0.20Apache Tomcat 7.0.2Apache Tomcat 8.0.29Apache Tomcat 8.0.28Apache Tomcat 8.0.22Apache Tomcat 8.0.21Apache Tomcat 8.0.1Apache Tomcat 7.0.61Apache Tomcat 7.0.6Apache Tomcat 7.0.52Apache Tomcat 7.0.50Apache Tomcat 7.0.5Apache Tomcat 7.0.37Apache Tomcat 7.0.35Apache Tomcat 7.0.27Apache Tomcat 7.0.26Apache Tomcat 7.0.19Apache Tomcat 7.0.16Apache Tomcat 7.0.14Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 15.10
NA
CVE-2014-7810
The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemented by an inaccessible class, which allows attackers to bypass a SecurityManager...
Debian Debian Linux 7.0Apache Tomcat 6.0.1Apache Tomcat 6.0.10Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.0Apache Tomcat 6.0.13Apache Tomcat 6.0.14Apache Tomcat 6.0.2Apache Tomcat 6.0.20Apache Tomcat 6.0.30Apache Tomcat 6.0.31Apache Tomcat 6.0.4Apache Tomcat 6.0.41Apache Tomcat 6.0.7Apache Tomcat 6.0.8Apache Tomcat 7.0.10Apache Tomcat 7.0.11Apache Tomcat 7.0.19Apache Tomcat 7.0.2Apache Tomcat 7.0.25Apache Tomcat 7.0.26Apache Tomcat 7.0.32Apache Tomcat 7.0.33Apache Tomcat 7.0.4Apache Tomcat 7.0.40Apache Tomcat 7.0.47Apache Tomcat 7.0.48Apache Tomcat 7.0.55Apache Tomcat 7.0.56Apache Tomcat 8.0.0Apache Tomcat 8.0.12Apache Tomcat 8.0.14Apache Tomcat 6.0.15Apache Tomcat 6.0.16Apache Tomcat 6.0.17Apache Tomcat 6.0.24Apache Tomcat 6.0.26Apache Tomcat 6.0.32Apache Tomcat 6.0.33Apache Tomcat 6.0.43Apache Tomcat 6.0.5Apache Tomcat 6.0.9Apache Tomcat 7.0.12Apache Tomcat 7.0.13Apache Tomcat 7.0.20Apache Tomcat 7.0.27Apache Tomcat 7.0.28Apache Tomcat 7.0.34Apache Tomcat 7.0.35Apache Tomcat 7.0.41Apache Tomcat 7.0.42Apache Tomcat 7.0.49Apache Tomcat 7.0.5Apache Tomcat 7.0.57Apache Tomcat 7.0.6Apache Tomcat 8.0.1Apache Tomcat 8.0.3Apache Tomcat 8.0.15Apache Tomcat 6.0.27Apache Tomcat 6.0.28Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache Tomcat 6.0.6Apache Tomcat 7.0.0Apache Tomcat 7.0.14Apache Tomcat 7.0.15Apache Tomcat 7.0.21Apache Tomcat 7.0.22Apache Tomcat 7.0.29Apache Tomcat 7.0.3Apache Tomcat 7.0.36Apache Tomcat 7.0.37Apache Tomcat 7.0.43Apache Tomcat 7.0.44Apache Tomcat 7.0.50Apache Tomcat 7.0.52Apache Tomcat 7.0.7Apache Tomcat 7.0.8Apache Tomcat 7.0.9Apache Tomcat 8.0.5Apache Tomcat 8.0.8Apache Tomcat 6.0.11Apache Tomcat 6.0.12Apache Tomcat 6.0.29Apache Tomcat 6.0.3Apache Tomcat 6.0.37Apache Tomcat 6.0.39Apache Tomcat 7.0.1Apache Tomcat 7.0.16Apache Tomcat 7.0.17Apache Tomcat 7.0.18Apache Tomcat 7.0.23Apache Tomcat 7.0.24Apache Tomcat 7.0.30Apache Tomcat 7.0.31Apache Tomcat 7.0.38Apache Tomcat 7.0.39Apache Tomcat 7.0.45Apache Tomcat 7.0.46Apache Tomcat 7.0.53Apache Tomcat 7.0.54Apache Tomcat 8.0.9Apache Tomcat 8.0.11
7.5
CVSSv3
CVE-2017-5647
A bug in the handling of the pipelined requests in Apache Tomcat 9.0.0.M1 to 9.0.0.M18, 8.5.0 to 8.5.12, 8.0.0.RC1 to 8.0.42, 7.0.0 to 7.0.76, and 6.0.0 to 6.0.52, when send file was used, results in the pipelined request being lost when send file processing of the previous...
Apache Tomcat 6.0.1Apache Tomcat 6.0.2Apache Tomcat 6.0.9Apache Tomcat 6.0.10Apache Tomcat 6.0.11Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.26Apache Tomcat 6.0.27Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache Tomcat 6.0.43Apache Tomcat 6.0.44Apache Tomcat 6.0.52Apache Tomcat 6.0.0Apache Tomcat 6.0.7Apache Tomcat 6.0.8Apache Tomcat 6.0.16Apache Tomcat 6.0.17Apache Tomcat 6.0.24Apache Tomcat 6.0.25Apache Tomcat 6.0.32Apache Tomcat 6.0.33Apache Tomcat 6.0.34Apache Tomcat 6.0.41Apache Tomcat 6.0.42Apache Tomcat 6.0.50Apache Tomcat 6.0.51Apache Tomcat 6.0.5Apache Tomcat 6.0.6Apache Tomcat 6.0.14Apache Tomcat 6.0.15Apache Tomcat 6.0.22Apache Tomcat 6.0.23Apache Tomcat 6.0.48Apache Tomcat 6.0.49Apache Tomcat 6.0.3Apache Tomcat 6.0.4Apache Tomcat 6.0.12Apache Tomcat 6.0.13Apache Tomcat 6.0.20Apache Tomcat 6.0.21Apache Tomcat 6.0.28Apache Tomcat 6.0.29Apache Tomcat 6.0.37Apache Tomcat 6.0.38Apache Tomcat 6.0.45Apache Tomcat 6.0.46Apache Tomcat 6.0.30Apache Tomcat 6.0.31Apache Tomcat 6.0.39Apache Tomcat 6.0.40Apache Tomcat 6.0.47Apache Tomcat 7.0.73Apache Tomcat 7.0.74Apache Tomcat 7.0.4Apache Tomcat 7.0.5Apache Tomcat 7.0.12Apache Tomcat 7.0.13Apache Tomcat 7.0.21Apache Tomcat 7.0.22Apache Tomcat 7.0.29Apache Tomcat 7.0.30Apache Tomcat 7.0.37Apache Tomcat 7.0.38Apache Tomcat 7.0.39Apache Tomcat 7.0.46Apache Tomcat 7.0.47Apache Tomcat 7.0.54Apache Tomcat 7.0.55Apache Tomcat 7.0.63Apache Tomcat 7.0.64Apache Tomcat 7.0.71Apache Tomcat 7.0.72Apache Tomcat 7.0.75Apache Tomcat 7.0.76Apache Tomcat 7.0.6Apache Tomcat 7.0.7Apache Tomcat 7.0.14Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.23Apache Tomcat 7.0.24Apache Tomcat 7.0.31Apache Tomcat 7.0.32Apache Tomcat 7.0.40Apache Tomcat 7.0.41Apache Tomcat 7.0.48Apache Tomcat 7.0.49Apache Tomcat 7.0.56Apache Tomcat 7.0.57Apache Tomcat 7.0.65Apache Tomcat 7.0.66Apache Tomcat 7.0.0Apache Tomcat 7.0.1Apache Tomcat 7.0.8Apache Tomcat 7.0.9Apache Tomcat 7.0.17Apache Tomcat 7.0.18Apache Tomcat 7.0.25Apache Tomcat 7.0.26Apache Tomcat 7.0.33Apache Tomcat 7.0.34Apache Tomcat 7.0.42Apache Tomcat 7.0.43Apache Tomcat 7.0.50Apache Tomcat 7.0.51Apache Tomcat 7.0.58Apache Tomcat 7.0.59Apache Tomcat 7.0.67Apache Tomcat 7.0.68Apache Tomcat 7.0.2Apache Tomcat 7.0.3Apache Tomcat 7.0.10Apache Tomcat 7.0.11Apache Tomcat 7.0.19Apache Tomcat 7.0.20Apache Tomcat 7.0.27Apache Tomcat 7.0.28Apache Tomcat 7.0.35Apache Tomcat 7.0.36Apache Tomcat 7.0.44Apache Tomcat 7.0.45Apache Tomcat 7.0.52Apache Tomcat 7.0.53Apache Tomcat 7.0.60Apache Tomcat 7.0.61Apache Tomcat 7.0.62Apache Tomcat 7.0.69Apache Tomcat 7.0.70Apache Tomcat 8.0.40Apache Tomcat 8.0.41Apache Tomcat 8.0.4Apache Tomcat 8.0.5Apache Tomcat 8.0.12Apache Tomcat 8.0.13Apache Tomcat 8.0.21Apache Tomcat 8.0.22Apache Tomcat 8.0.29Apache Tomcat 8.0.30Apache Tomcat 8.0.37Apache Tomcat 8.0.38Apache Tomcat 8.0.39Apache Tomcat 8.0.2Apache Tomcat 8.0.3Apache Tomcat 8.0.10Apache Tomcat 8.0.11Apache Tomcat 8.0.19Apache Tomcat 8.0.20Apache Tomcat 8.0.27Apache Tomcat 8.0.28Apache Tomcat 8.0.35Apache Tomcat 8.0.36Apache Tomcat 8.0.0Apache Tomcat 8.0.1Apache Tomcat 8.0.8Apache Tomcat 8.0.9Apache Tomcat 8.0.16Apache Tomcat 8.0.17Apache Tomcat 8.0.18Apache Tomcat 8.0.25Apache Tomcat 8.0.26Apache Tomcat 8.0.33Apache Tomcat 8.0.34Apache Tomcat 8.0.42Apache Tomcat 8.0.6Apache Tomcat 8.0.7Apache Tomcat 8.0.14Apache Tomcat 8.0.15Apache Tomcat 8.0.23Apache Tomcat 8.0.24Apache Tomcat 8.0.31Apache Tomcat 8.0.32Apache Tomcat 8.5.0Apache Tomcat 8.5.1Apache Tomcat 8.5.11Apache Tomcat 8.5.12Apache Tomcat 8.5.6Apache Tomcat 8.5.9Apache Tomcat 8.5.10Apache Tomcat 8.5.4Apache Tomcat 8.5.5Apache Tomcat 8.5.7Apache Tomcat 8.5.8Apache Tomcat 8.5.2Apache Tomcat 8.5.3Apache Tomcat 9.0.0
NA
CVE-2014-0075
Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed...
Apache Tomcat 7.0.1Apache Tomcat 7.0.10Apache Tomcat 7.0.17Apache Tomcat 7.0.18Apache Tomcat 7.0.23Apache Tomcat 7.0.24Apache Tomcat 7.0.31Apache Tomcat 7.0.32Apache Tomcat 7.0.39Apache Tomcat 7.0.4Apache Tomcat 7.0.45Apache Tomcat 7.0.46Apache Tomcat 7.0.47Apache Tomcat 7.0.8Apache Tomcat 7.0.9Apache Tomcat 7.0.52Apache Tomcat 7.0.13Apache Tomcat 7.0.14Apache Tomcat 7.0.2Apache Tomcat 7.0.20Apache Tomcat 7.0.28Apache Tomcat 7.0.29Apache Tomcat 7.0.35Apache Tomcat 7.0.36Apache Tomcat 7.0.41Apache Tomcat 7.0.42Apache Tomcat 7.0.5Apache Tomcat 7.0.50Apache Tomcat 7.0.11Apache Tomcat 7.0.12Apache Tomcat 7.0.19Apache Tomcat 7.0.25Apache Tomcat 7.0.26Apache Tomcat 7.0.27Apache Tomcat 7.0.33Apache Tomcat 7.0.34Apache Tomcat 7.0.40Apache Tomcat 7.0.48Apache Tomcat 7.0.49Apache Tomcat 7.0.0Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.21Apache Tomcat 7.0.22Apache Tomcat 7.0.3Apache Tomcat 7.0.30Apache Tomcat 7.0.37Apache Tomcat 7.0.38Apache Tomcat 7.0.43Apache Tomcat 7.0.44Apache Tomcat 7.0.6Apache Tomcat 7.0.7Apache Tomcat 8.0.1Apache Tomcat 8.0.0Apache Tomcat 8.0.3Apache Tomcat 6.0.10Apache Tomcat 6.0.11Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.27Apache Tomcat 6.0.28Apache Tomcat 6.0.36Apache Tomcat 6.0.37Apache Tomcat 6.0.7Apache Tomcat 6.0Apache Tomcat 6.0.0Apache Tomcat 6.0.14Apache Tomcat 6.0.15Apache Tomcat 6.0.2Apache Tomcat 6.0.20Apache Tomcat 6.0.30Apache Tomcat 6.0.31Apache Tomcat 6.0.32Apache Tomcat 6.0.5Apache Tomcat 6.0.6Apache Tomcat 6.0.9Apache TomcatApache Tomcat 6Apache Tomcat 6.0.12Apache Tomcat 6.0.13Apache Tomcat 6.0.29Apache Tomcat 6.0.3Apache Tomcat 6.0.4Apache Tomcat 6.0.8Apache Tomcat 6.0.1Apache Tomcat 6.0.16Apache Tomcat 6.0.17Apache Tomcat 6.0.24Apache Tomcat 6.0.26Apache Tomcat 6.0.33Apache Tomcat 6.0.35
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
elevation of privilegeCVE-2022-42331CVE-2023-24709CVE-2023-27569open redirectinjectionCVE-2023-27087
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook