CVE-2017-5651 critical 9.8
9.8
9y ago
In Apache Tomcat 9.0.0.M1 to 9.0.0.M18 and 8.5.0 to 8.5.12, the refactoring of the HTTP connectors introduced a regression in the send file processing. If the send file processing completed quickly, …
suse debian java apache
CVE-2023-44487 high 7.5
9.0
3y ago
Important: nodejs:20 security update
rockylinux redhat debian suse +11
CVE-2026-29129 high —
8.0
2mo ago
Apache Tomcat: Configured cipher preference order not preserved
suse debian java
CVE-2026-24880 high —
8.0
2mo ago
Apache Tomcat has an HTTP Request/Response Smuggling vulnerability
suse debian java
CVE-2025-53506 high —
8.0
9mo ago
Important: tomcat security update
redhat rockylinux suse debian +1
CVE-2025-31650 high —
8.0
11mo ago
Apache Tomcat Denial of Service via invalid HTTP priority header
arch redhat rockylinux suse +2
CVE-2024-34750 high —
8.0
2y ago
Important: tomcat security update
redhat rockylinux suse debian +1
CVE-2024-24549 high —
8.0
2y ago
Apache Tomcat Denial of Service due to improper input validation vulnerability for HTTP/2 requests
redhat suse rockylinux debian +1
CVE-2020-13934 high —
8.0
4y ago
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat
arch suse debian java
CVE-2019-0199 high —
8.0
6y ago
Apache Tomcat Denial of Service vulnerability
suse debian java
CVE-2025-48989 high 7.5
7.5
9mo ago
Important: tomcat security update
redhat rockylinux suse debian +2
CVE-2016-6816 high 7.1
7.1
9y ago
The code in Apache Tomcat 9.0.0.M1 to 9.0.0.M11, 8.5.0 to 8.5.6, 8.0.0.RC1 to 8.0.38, 7.0.0 to 7.0.72, and 6.0.0 to 6.0.47 that parsed the HTTP request line permitted invalid characters. This could b…
suse debian java apache
CVE-2026-32990 unknown —
—
2mo ago
Apache Tomcat has an Improper Input Validation vulnerability
debian java