| CVE-2026-43514 |
low |
3.7 |
3.7 |
16d ago |
Apache Tomcat - AJP secret compared in non-constant time |
|
| CVE-2024-54677 |
low |
— |
2.5 |
2y ago |
Apache Tomcat Uncontrolled Resource Consumption vulnerability |
|
| CVE-2017-12617 |
unknown |
— |
1.5 |
4y ago |
Unrestricted Upload of File with Dangerous Type Apache Tomcat |
|
| CVE-2016-8735 |
unknown |
— |
1.5 |
4y ago |
Apache Tomcat Improper Access Control vulnerability |
|
| CVE-2026-34487 |
unknown |
— |
— |
2mo ago |
Apache Tomcat vulnerable to Insertion of Sensitive Information into Log File |
|
| CVE-2026-34483 |
unknown |
— |
— |
2mo ago |
Apache Tomcat has an Improper Encoding or Escaping of Output vulnerability in the JsonAccessLogValve |
|
| CVE-2026-25854 |
unknown |
— |
— |
2mo ago |
Apache Tomcat has an Open Redirect vulnerability |
|
| CVE-2025-66614 |
unknown |
— |
— |
3mo ago |
Apache Tomcat - Client certificate verification bypass |
|
| CVE-2026-24733 |
unknown |
— |
— |
3mo ago |
Apache Tomcat - Security constraint bypass with HTTP/0.9 |
|
| CVE-2025-49124 |
unknown |
— |
— |
1y ago |
Apache Tomcat installer for Windows has an untrusted search path vulnerability |
|
| CVE-2024-52316 |
unknown |
— |
— |
2y ago |
Apache Tomcat - Authentication Bypass |
|
| CVE-2022-45143 |
unknown |
— |
— |
3y ago |
Apache Tomcat improperly escapes input from JsonErrorReportValve |
|