Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
tomcat vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2008-0002
Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order...
Apache Tomcat 6.0.5
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.8
Apache Tomcat 6.0.9
Apache Tomcat 6.0.10
Apache Tomcat 6.0.11
Apache Tomcat 6.0.12
Apache Tomcat 6.0.13
Apache Tomcat 6.0.14
Apache Tomcat 6.0.15
4.3
CVSSv2
CVE-2011-5063
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check realm values, which might allow remote attackers to bypass intended access restrictions by leveraging the availability of a...
Apache Tomcat 5.5.0
Apache Tomcat 5.5.1
Apache Tomcat 5.5.2
Apache Tomcat 5.5.3
Apache Tomcat 5.5.4
Apache Tomcat 5.5.5
Apache Tomcat 5.5.6
Apache Tomcat 5.5.7
Apache Tomcat 5.5.8
Apache Tomcat 5.5.9
Apache Tomcat 5.5.10
Apache Tomcat 5.5.11
Apache Tomcat 5.5.12
Apache Tomcat 5.5.13
Apache Tomcat 5.5.14
Apache Tomcat 5.5.15
Apache Tomcat 5.5.16
Apache Tomcat 5.5.17
Apache Tomcat 5.5.18
Apache Tomcat 5.5.19
Apache Tomcat 5.5.20
Apache Tomcat 5.5.21
Apache Tomcat 5.5.22
Apache Tomcat 5.5.23
Apache Tomcat 5.5.24
Apache Tomcat 5.5.25
Apache Tomcat 5.5.26
Apache Tomcat 5.5.27
Apache Tomcat 5.5.28
Apache Tomcat 5.5.29
Apache Tomcat 5.5.30
Apache Tomcat 5.5.31
Apache Tomcat 5.5.32
Apache Tomcat 5.5.33
Apache Tomcat 6.0
Apache Tomcat 6.0.0
Apache Tomcat 6.0.1
Apache Tomcat 6.0.2
Apache Tomcat 6.0.3
Apache Tomcat 6.0.4
Apache Tomcat 6.0.5
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.8
Apache Tomcat 6.0.9
Apache Tomcat 6.0.10
Apache Tomcat 6.0.11
Apache Tomcat 6.0.12
Apache Tomcat 6.0.13
Apache Tomcat 6.0.14
Apache Tomcat 6.0.15
Apache Tomcat 6.0.16
Apache Tomcat 6.0.17
Apache Tomcat 6.0.18
Apache Tomcat 6.0.19
Apache Tomcat 6.0.20
Apache Tomcat 6.0.24
Apache Tomcat 6.0.26
Apache Tomcat 6.0.27
Apache Tomcat 6.0.28
Apache Tomcat 6.0.29
Apache Tomcat 6.0.30
Apache Tomcat 6.0.31
Apache Tomcat 6.0.32
Apache Tomcat 7.0.0
Apache Tomcat 7.0.1
Apache Tomcat 7.0.2
Apache Tomcat 7.0.3
Apache Tomcat 7.0.4
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.7
Apache Tomcat 7.0.8
Apache Tomcat 7.0.9
Apache Tomcat 7.0.10
Apache Tomcat 7.0.11
4
CVSSv2
CVE-2020-13943
If an HTTP/2 client connecting to Apache Tomcat 10.0.0-M1 to 10.0.0-M7, 9.0.0.M1 to 9.0.37 or 8.5.0 to 8.5.57 exceeded the agreed maximum number of concurrent streams for a connection (in violation of the HTTP/2 protocol), it was possible that a subsequent request made on that...
Apache Tomcat 8.5.0
Apache Tomcat 8.5.1
Apache Tomcat 8.5.2
Apache Tomcat 8.5.3
Apache Tomcat 8.5.4
Apache Tomcat 8.5.5
Apache Tomcat 8.5.6
Apache Tomcat 8.5.7
Apache Tomcat 8.5.8
Apache Tomcat 8.5.9
Apache Tomcat 8.5.10
Apache Tomcat 8.5.11
Apache Tomcat 8.5.12
Apache Tomcat 8.5.13
Apache Tomcat 8.5.14
Apache Tomcat 8.5.15
Apache Tomcat 8.5.16
Apache Tomcat 8.5.17
Apache Tomcat 8.5.18
Apache Tomcat 8.5.19
Apache Tomcat 8.5.20
Apache Tomcat 8.5.21
Apache Tomcat 8.5.22
Apache Tomcat 8.5.23
Apache Tomcat 8.5.24
Apache Tomcat 8.5.25
Apache Tomcat 8.5.26
Apache Tomcat 8.5.27
Apache Tomcat 8.5.28
Apache Tomcat 8.5.29
Apache Tomcat 8.5.30
Apache Tomcat 8.5.31
Apache Tomcat 8.5.32
Apache Tomcat 8.5.33
Apache Tomcat 8.5.34
Apache Tomcat 8.5.35
Apache Tomcat 8.5.36
Apache Tomcat 8.5.37
Apache Tomcat 8.5.38
Apache Tomcat 8.5.39
Apache Tomcat 8.5.40
Apache Tomcat 8.5.41
Apache Tomcat 8.5.42
Apache Tomcat 8.5.43
Apache Tomcat 8.5.44
Apache Tomcat 8.5.45
Apache Tomcat 8.5.46
Apache Tomcat 8.5.47
Apache Tomcat 8.5.48
Apache Tomcat 8.5.49
Apache Tomcat 8.5.50
Apache Tomcat 8.5.51
Apache Tomcat 8.5.52
Apache Tomcat 8.5.53
Apache Tomcat 8.5.54
Apache Tomcat 8.5.55
Apache Tomcat 8.5.56
Apache Tomcat 8.5.57
Apache Tomcat 9.0.0
Apache Tomcat 9.0.1
Apache Tomcat 9.0.2
Apache Tomcat 9.0.3
Apache Tomcat 9.0.4
Apache Tomcat 9.0.5
Apache Tomcat 9.0.6
Apache Tomcat 9.0.7
Apache Tomcat 9.0.8
Apache Tomcat 9.0.9
Apache Tomcat 9.0.10
Apache Tomcat 9.0.11
Apache Tomcat 9.0.12
Apache Tomcat 9.0.13
Apache Tomcat 9.0.14
Apache Tomcat 9.0.15
Apache Tomcat 9.0.16
Apache Tomcat 9.0.17
Apache Tomcat 9.0.18
Apache Tomcat 9.0.19
Apache Tomcat 9.0.20
Apache Tomcat 9.0.21
Apache Tomcat 9.0.22
Apache Tomcat 9.0.23
Apache Tomcat 9.0.24
Apache Tomcat 9.0.25
Apache Tomcat 9.0.26
Apache Tomcat 9.0.27
Apache Tomcat 9.0.28
Apache Tomcat 9.0.29
Apache Tomcat 9.0.30
Apache Tomcat 9.0.31
Apache Tomcat 9.0.32
Apache Tomcat 9.0.33
Apache Tomcat 9.0.34
Apache Tomcat 9.0.35
Apache Tomcat 9.0.36
Apache Tomcat 9.0.37
Apache Tomcat 10.0.0
Debian Debian Linux 9.0
5
CVSSv2
CVE-2016-5018
In Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 a malicious web application was able to bypass a configured SecurityManager via a Tomcat utility method that was accessible to web applications....
Apache Tomcat 6.0.0
Apache Tomcat 6.0.1
Apache Tomcat 6.0.2
Apache Tomcat 6.0.3
Apache Tomcat 6.0.4
Apache Tomcat 6.0.5
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.8
Apache Tomcat 6.0.9
Apache Tomcat 6.0.10
Apache Tomcat 6.0.11
Apache Tomcat 6.0.12
Apache Tomcat 6.0.13
Apache Tomcat 6.0.14
Apache Tomcat 6.0.15
Apache Tomcat 6.0.16
Apache Tomcat 6.0.17
Apache Tomcat 6.0.18
Apache Tomcat 6.0.19
Apache Tomcat 6.0.20
Apache Tomcat 6.0.21
Apache Tomcat 6.0.22
Apache Tomcat 6.0.23
Apache Tomcat 6.0.24
Apache Tomcat 6.0.25
Apache Tomcat 6.0.26
Apache Tomcat 6.0.27
Apache Tomcat 6.0.28
Apache Tomcat 6.0.29
Apache Tomcat 6.0.30
Apache Tomcat 6.0.31
Apache Tomcat 6.0.32
Apache Tomcat 6.0.33
Apache Tomcat 6.0.34
Apache Tomcat 6.0.35
Apache Tomcat 6.0.36
Apache Tomcat 6.0.37
Apache Tomcat 6.0.38
Apache Tomcat 6.0.39
Apache Tomcat 6.0.40
Apache Tomcat 6.0.41
Apache Tomcat 6.0.42
Apache Tomcat 6.0.43
Apache Tomcat 6.0.44
Apache Tomcat 6.0.45
Apache Tomcat 7.0.0
Apache Tomcat 7.0.1
Apache Tomcat 7.0.2
Apache Tomcat 7.0.3
Apache Tomcat 7.0.4
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.7
Apache Tomcat 7.0.8
Apache Tomcat 7.0.9
Apache Tomcat 7.0.10
Apache Tomcat 7.0.11
Apache Tomcat 7.0.12
Apache Tomcat 7.0.13
Apache Tomcat 7.0.14
Apache Tomcat 7.0.15
Apache Tomcat 7.0.16
Apache Tomcat 7.0.17
Apache Tomcat 7.0.18
Apache Tomcat 7.0.19
Apache Tomcat 7.0.20
Apache Tomcat 7.0.21
Apache Tomcat 7.0.22
Apache Tomcat 7.0.23
Apache Tomcat 7.0.24
Apache Tomcat 7.0.25
Apache Tomcat 7.0.26
Apache Tomcat 7.0.27
Apache Tomcat 7.0.28
Apache Tomcat 7.0.29
Apache Tomcat 7.0.30
Apache Tomcat 7.0.31
Apache Tomcat 7.0.32
Apache Tomcat 7.0.33
Apache Tomcat 7.0.34
Apache Tomcat 7.0.35
Apache Tomcat 7.0.36
Apache Tomcat 7.0.37
Apache Tomcat 7.0.38
Apache Tomcat 7.0.39
Apache Tomcat 7.0.40
Apache Tomcat 7.0.41
Apache Tomcat 7.0.42
Apache Tomcat 7.0.43
Apache Tomcat 7.0.44
Apache Tomcat 7.0.45
Apache Tomcat 7.0.46
Apache Tomcat 7.0.47
Apache Tomcat 7.0.48
Apache Tomcat 7.0.49
Apache Tomcat 7.0.50
Apache Tomcat 7.0.52
Apache Tomcat 7.0.53
Apache Tomcat 7.0.54
Apache Tomcat 7.0.55
Apache Tomcat 7.0.56
Apache Tomcat 7.0.57
Apache Tomcat 7.0.58
Apache Tomcat 7.0.59
Apache Tomcat 7.0.60
Apache Tomcat 7.0.61
Apache Tomcat 7.0.62
Apache Tomcat 7.0.63
Apache Tomcat 7.0.64
Apache Tomcat 7.0.65
Apache Tomcat 7.0.66
Apache Tomcat 7.0.67
Apache Tomcat 7.0.68
Apache Tomcat 7.0.69
Apache Tomcat 7.0.70
Apache Tomcat 8.0
Apache Tomcat 8.0.0
Apache Tomcat 8.0.1
Apache Tomcat 8.0.2
Apache Tomcat 8.0.3
Apache Tomcat 8.0.4
Apache Tomcat 8.0.5
Apache Tomcat 8.0.6
Apache Tomcat 8.0.7
Apache Tomcat 8.0.8
Apache Tomcat 8.0.9
Apache Tomcat 8.0.10
Apache Tomcat 8.0.11
Apache Tomcat 8.0.12
Apache Tomcat 8.0.13
Apache Tomcat 8.0.14
Apache Tomcat 8.0.15
Apache Tomcat 8.0.16
Apache Tomcat 8.0.17
Apache Tomcat 8.0.18
Apache Tomcat 8.0.19
Apache Tomcat 8.0.20
Apache Tomcat 8.0.21
Apache Tomcat 8.0.22
Apache Tomcat 8.0.23
Apache Tomcat 8.0.24
Apache Tomcat 8.0.25
Apache Tomcat 8.0.26
Apache Tomcat 8.0.27
Apache Tomcat 8.0.28
Apache Tomcat 8.0.29
Apache Tomcat 8.0.30
Apache Tomcat 8.0.31
Apache Tomcat 8.0.32
Apache Tomcat 8.0.33
Apache Tomcat 8.0.34
Apache Tomcat 8.0.35
Apache Tomcat 8.0.36
Apache Tomcat 8.5.0
Apache Tomcat 8.5.1
Apache Tomcat 8.5.2
Apache Tomcat 8.5.3
Apache Tomcat 8.5.4
Apache Tomcat 9.0.0
4.3
CVSSv2
CVE-2014-0096
java/org/apache/catalina/servlets/DefaultServlet.java in the default servlet in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 does not properly restrict XSLT stylesheets, which allows remote attackers to bypass security-manager restrictions and read...
Apache Tomcat 7.0.0
Apache Tomcat 7.0.1
Apache Tomcat 7.0.2
Apache Tomcat 7.0.3
Apache Tomcat 7.0.4
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.7
Apache Tomcat 7.0.8
Apache Tomcat 7.0.9
Apache Tomcat 7.0.10
Apache Tomcat 7.0.11
Apache Tomcat 7.0.12
Apache Tomcat 7.0.13
Apache Tomcat 7.0.14
Apache Tomcat 7.0.15
Apache Tomcat 7.0.16
Apache Tomcat 7.0.17
Apache Tomcat 7.0.18
Apache Tomcat 7.0.19
Apache Tomcat 7.0.20
Apache Tomcat 7.0.21
Apache Tomcat 7.0.22
Apache Tomcat 7.0.23
Apache Tomcat 7.0.24
Apache Tomcat 7.0.25
Apache Tomcat 7.0.26
Apache Tomcat 7.0.27
Apache Tomcat 7.0.28
Apache Tomcat 7.0.29
Apache Tomcat 7.0.30
Apache Tomcat 7.0.31
Apache Tomcat 7.0.32
Apache Tomcat 7.0.33
Apache Tomcat 7.0.34
Apache Tomcat 7.0.35
Apache Tomcat 7.0.36
Apache Tomcat 7.0.37
Apache Tomcat 7.0.38
Apache Tomcat 7.0.39
Apache Tomcat 7.0.40
Apache Tomcat 7.0.41
Apache Tomcat 7.0.42
Apache Tomcat 7.0.43
Apache Tomcat 7.0.44
Apache Tomcat 7.0.45
Apache Tomcat 7.0.46
Apache Tomcat 7.0.47
Apache Tomcat 7.0.48
Apache Tomcat 7.0.49
Apache Tomcat 7.0.50
Apache Tomcat 7.0.52
Apache Tomcat 8.0.0
Apache Tomcat 8.0.1
Apache Tomcat 8.0.3
Apache Tomcat 6
Apache Tomcat 6.0
Apache Tomcat 6.0.0
Apache Tomcat 6.0.1
Apache Tomcat 6.0.2
Apache Tomcat 6.0.3
Apache Tomcat 6.0.4
Apache Tomcat 6.0.5
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.8
Apache Tomcat 6.0.9
Apache Tomcat 6.0.10
Apache Tomcat 6.0.11
Apache Tomcat 6.0.12
Apache Tomcat 6.0.13
Apache Tomcat 6.0.14
Apache Tomcat 6.0.15
Apache Tomcat 6.0.16
Apache Tomcat 6.0.17
Apache Tomcat 6.0.18
Apache Tomcat 6.0.19
Apache Tomcat 6.0.20
Apache Tomcat 6.0.24
Apache Tomcat 6.0.26
Apache Tomcat 6.0.27
Apache Tomcat 6.0.28
Apache Tomcat 6.0.29
Apache Tomcat 6.0.30
Apache Tomcat 6.0.31
Apache Tomcat 6.0.32
Apache Tomcat 6.0.33
Apache Tomcat 6.0.35
Apache Tomcat 6.0.36
Apache Tomcat 6.0.37
Apache Tomcat
2 Articles available
5
CVSSv2
CVE-2012-3544
Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not properly handle chunk extensions in chunked transfer coding, which allows remote attackers to cause a denial of service by streaming data....
Apache Tomcat 6.0
Apache Tomcat 6.0.0
Apache Tomcat 6.0.1
Apache Tomcat 6.0.2
Apache Tomcat 6.0.3
Apache Tomcat 6.0.4
Apache Tomcat 6.0.5
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.8
Apache Tomcat 6.0.9
Apache Tomcat 6.0.10
Apache Tomcat 6.0.11
Apache Tomcat 6.0.12
Apache Tomcat 6.0.13
Apache Tomcat 6.0.14
Apache Tomcat 6.0.15
Apache Tomcat 6.0.16
Apache Tomcat 6.0.17
Apache Tomcat 6.0.18
Apache Tomcat 6.0.19
Apache Tomcat 6.0.20
Apache Tomcat 6.0.24
Apache Tomcat 6.0.26
Apache Tomcat 6.0.27
Apache Tomcat 6.0.28
Apache Tomcat 6.0.29
Apache Tomcat 6.0.30
Apache Tomcat 6.0.31
Apache Tomcat 6.0.32
Apache Tomcat 6.0.33
Apache Tomcat 6.0.35
Apache Tomcat 6.0.36
Apache Tomcat 7.0.0
Apache Tomcat 7.0.1
Apache Tomcat 7.0.2
Apache Tomcat 7.0.3
Apache Tomcat 7.0.4
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.7
Apache Tomcat 7.0.8
Apache Tomcat 7.0.9
Apache Tomcat 7.0.10
Apache Tomcat 7.0.11
Apache Tomcat 7.0.12
Apache Tomcat 7.0.13
Apache Tomcat 7.0.14
Apache Tomcat 7.0.15
Apache Tomcat 7.0.16
Apache Tomcat 7.0.17
Apache Tomcat 7.0.18
Apache Tomcat 7.0.19
Apache Tomcat 7.0.20
Apache Tomcat 7.0.21
Apache Tomcat 7.0.22
Apache Tomcat 7.0.23
Apache Tomcat 7.0.25
Apache Tomcat 7.0.28
4.3
CVSSv2
CVE-2012-4431
org/apache/catalina/filters/CsrfPreventionFilter.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.32 allows remote attackers to bypass the cross-site request forgery (CSRF) protection mechanism via a request that lacks a session identifier....
Apache Tomcat 6.0
Apache Tomcat 6.0.0
Apache Tomcat 6.0.1
Apache Tomcat 6.0.2
Apache Tomcat 6.0.3
Apache Tomcat 6.0.4
Apache Tomcat 6.0.5
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.8
Apache Tomcat 6.0.9
Apache Tomcat 6.0.10
Apache Tomcat 6.0.11
Apache Tomcat 6.0.12
Apache Tomcat 6.0.13
Apache Tomcat 6.0.14
Apache Tomcat 6.0.15
Apache Tomcat 6.0.16
Apache Tomcat 6.0.17
Apache Tomcat 6.0.18
Apache Tomcat 6.0.19
Apache Tomcat 6.0.20
Apache Tomcat 6.0.24
Apache Tomcat 6.0.26
Apache Tomcat 6.0.27
Apache Tomcat 6.0.28
Apache Tomcat 6.0.29
Apache Tomcat 6.0.30
Apache Tomcat 6.0.31
Apache Tomcat 6.0.32
Apache Tomcat 6.0.33
Apache Tomcat 6.0.35
Apache Tomcat 7.0.0
Apache Tomcat 7.0.1
Apache Tomcat 7.0.2
Apache Tomcat 7.0.3
Apache Tomcat 7.0.4
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.7
Apache Tomcat 7.0.8
Apache Tomcat 7.0.9
Apache Tomcat 7.0.10
Apache Tomcat 7.0.11
Apache Tomcat 7.0.12
Apache Tomcat 7.0.13
Apache Tomcat 7.0.14
Apache Tomcat 7.0.15
Apache Tomcat 7.0.16
Apache Tomcat 7.0.17
Apache Tomcat 7.0.18
Apache Tomcat 7.0.19
Apache Tomcat 7.0.20
Apache Tomcat 7.0.21
Apache Tomcat 7.0.22
Apache Tomcat 7.0.23
Apache Tomcat 7.0.25
Apache Tomcat 7.0.28
Apache Tomcat 7.0.30
2.6
CVSSv2
CVE-2007-1358
Cross-site scripting (XSS) vulnerability in certain applications using Apache Tomcat 4.0.0 through 4.0.6 and 4.1.0 through 4.1.34 allows remote attackers to inject arbitrary web script or HTML via crafted "Accept-Language headers that do not conform to RFC 2616"....
Apache Tomcat 4.0.0
Apache Tomcat 4.0.1
Apache Tomcat 4.0.2
Apache Tomcat 4.0.3
Apache Tomcat 4.0.4
Apache Tomcat 4.0.5
Apache Tomcat 4.0.6
Apache Tomcat 4.1.0
Apache Tomcat
7.5
CVSSv2
CVE-2011-3190
Certain AJP protocol connector implementations in Apache Tomcat 7.0.0 through 7.0.20, 6.0.0 through 6.0.33, 5.5.0 through 5.5.33, and possibly other versions allow remote attackers to spoof AJP requests, bypass authentication, and obtain sensitive information by causing the...
Apache Tomcat 7.0.0
Apache Tomcat 7.0.1
Apache Tomcat 7.0.2
Apache Tomcat 7.0.3
Apache Tomcat 7.0.4
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.7
Apache Tomcat 7.0.8
Apache Tomcat 7.0.9
Apache Tomcat 7.0.10
Apache Tomcat 7.0.11
Apache Tomcat 7.0.12
Apache Tomcat 7.0.13
Apache Tomcat 7.0.14
Apache Tomcat 7.0.16
Apache Tomcat 7.0.17
Apache Tomcat 7.0.19
Apache Tomcat 7.0.20
Apache Tomcat 6.0
Apache Tomcat 6.0.0
Apache Tomcat 6.0.1
Apache Tomcat 6.0.2
Apache Tomcat 6.0.3
Apache Tomcat 6.0.4
Apache Tomcat 6.0.5
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.8
Apache Tomcat 6.0.9
Apache Tomcat 6.0.10
Apache Tomcat 6.0.11
Apache Tomcat 6.0.12
Apache Tomcat 6.0.13
Apache Tomcat 6.0.14
Apache Tomcat 6.0.15
Apache Tomcat 6.0.16
Apache Tomcat 6.0.17
Apache Tomcat 6.0.18
Apache Tomcat 6.0.19
Apache Tomcat 6.0.20
Apache Tomcat 6.0.24
Apache Tomcat 6.0.26
Apache Tomcat 6.0.27
Apache Tomcat 6.0.28
Apache Tomcat 6.0.29
Apache Tomcat 6.0.30
Apache Tomcat 6.0.31
Apache Tomcat 6.0.32
Apache Tomcat 6.0.33
Apache Tomcat 5.5.0
Apache Tomcat 5.5.1
Apache Tomcat 5.5.2
Apache Tomcat 5.5.3
Apache Tomcat 5.5.4
Apache Tomcat 5.5.5
Apache Tomcat 5.5.6
Apache Tomcat 5.5.7
Apache Tomcat 5.5.8
Apache Tomcat 5.5.9
Apache Tomcat 5.5.10
Apache Tomcat 5.5.11
Apache Tomcat 5.5.12
Apache Tomcat 5.5.13
Apache Tomcat 5.5.14
Apache Tomcat 5.5.15
Apache Tomcat 5.5.16
Apache Tomcat 5.5.17
Apache Tomcat 5.5.18
Apache Tomcat 5.5.19
Apache Tomcat 5.5.20
Apache Tomcat 5.5.21
Apache Tomcat 5.5.22
Apache Tomcat 5.5.23
Apache Tomcat 5.5.24
Apache Tomcat 5.5.25
Apache Tomcat 5.5.26
Apache Tomcat 5.5.27
Apache Tomcat 5.5.28
Apache Tomcat 5.5.29
Apache Tomcat 5.5.30
Apache Tomcat 5.5.31
Apache Tomcat 5.5.32
Apache Tomcat 5.5.33
5
CVSSv2
CVE-2012-5886
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 caches information about the authenticated user within the session state, which makes it easier for remote attackers to bypass authentication via...
Apache Tomcat 5.5.0
Apache Tomcat 5.5.1
Apache Tomcat 5.5.2
Apache Tomcat 5.5.3
Apache Tomcat 5.5.4
Apache Tomcat 5.5.5
Apache Tomcat 5.5.6
Apache Tomcat 5.5.7
Apache Tomcat 5.5.8
Apache Tomcat 5.5.9
Apache Tomcat 5.5.10
Apache Tomcat 5.5.11
Apache Tomcat 5.5.12
Apache Tomcat 5.5.13
Apache Tomcat 5.5.14
Apache Tomcat 5.5.15
Apache Tomcat 5.5.16
Apache Tomcat 5.5.17
Apache Tomcat 5.5.18
Apache Tomcat 5.5.19
Apache Tomcat 5.5.20
Apache Tomcat 5.5.21
Apache Tomcat 5.5.22
Apache Tomcat 5.5.23
Apache Tomcat 5.5.24
Apache Tomcat 5.5.25
Apache Tomcat 5.5.26
Apache Tomcat 5.5.27
Apache Tomcat 5.5.28
Apache Tomcat 5.5.29
Apache Tomcat 5.5.30
Apache Tomcat 5.5.31
Apache Tomcat 5.5.32
Apache Tomcat 5.5.33
Apache Tomcat 5.5.34
Apache Tomcat 5.5.35
Apache Tomcat 6.0
Apache Tomcat 6.0.0
Apache Tomcat 6.0.1
Apache Tomcat 6.0.2
Apache Tomcat 6.0.3
Apache Tomcat 6.0.4
Apache Tomcat 6.0.5
Apache Tomcat 6.0.6
Apache Tomcat 6.0.7
Apache Tomcat 6.0.8
Apache Tomcat 6.0.9
Apache Tomcat 6.0.10
Apache Tomcat 6.0.11
Apache Tomcat 6.0.12
Apache Tomcat 6.0.13
Apache Tomcat 6.0.14
Apache Tomcat 6.0.15
Apache Tomcat 6.0.16
Apache Tomcat 6.0.17
Apache Tomcat 6.0.18
Apache Tomcat 6.0.19
Apache Tomcat 6.0.20
Apache Tomcat 6.0.24
Apache Tomcat 6.0.26
Apache Tomcat 6.0.27
Apache Tomcat 6.0.28
Apache Tomcat 6.0.29
Apache Tomcat 6.0.30
Apache Tomcat 6.0.31
Apache Tomcat 6.0.32
Apache Tomcat 6.0.33
Apache Tomcat 6.0.35
Apache Tomcat 7.0.0
Apache Tomcat 7.0.1
Apache Tomcat 7.0.2
Apache Tomcat 7.0.3
Apache Tomcat 7.0.4
Apache Tomcat 7.0.5
Apache Tomcat 7.0.6
Apache Tomcat 7.0.7
Apache Tomcat 7.0.8
Apache Tomcat 7.0.9
Apache Tomcat 7.0.10
Apache Tomcat 7.0.11
Apache Tomcat 7.0.12
Apache Tomcat 7.0.13
Apache Tomcat 7.0.14
Apache Tomcat 7.0.15
Apache Tomcat 7.0.16
Apache Tomcat 7.0.17
Apache Tomcat 7.0.18
Apache Tomcat 7.0.19
Apache Tomcat 7.0.20
Apache Tomcat 7.0.21
Apache Tomcat 7.0.22
Apache Tomcat 7.0.23
Apache Tomcat 7.0.25
Apache Tomcat 7.0.28
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-24086
CVE-2021-25374
CVE-2021-25373
CVE-2021-26855
log injection
CVE-2021-20022
server-side request forgery
local
CVE-2021-25360
Vulnerability Notification
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »