Package impact

Maven / org.apache.tomcat:tomcat-coyote

critical high medium low unknown

0

KEV Has exploit

CVE	Severity	CVSS	Risk	Published	Description	Impact
CVE-2023-44487	high	7.5	9.0	3y ago	Important: nodejs:20 security update	+11
CVE-2026-24880	high	—	8.0	2mo ago	Apache Tomcat has an HTTP Request/Response Smuggling vulnerability
CVE-2026-29129	high	—	8.0	2mo ago	Apache Tomcat: Configured cipher preference order not preserved
CVE-2025-53506	high	—	8.0	9mo ago	Important: tomcat security update	+1
CVE-2025-31650	high	—	8.0	11mo ago	Apache Tomcat Denial of Service via invalid HTTP priority header	+2
CVE-2024-34750	high	—	8.0	2y ago	Important: tomcat security update	+1
CVE-2024-24549	high	—	8.0	2y ago	Apache Tomcat Denial of Service due to improper input validation vulnerability for HTTP/2 requests	+1
CVE-2020-13934	high	—	8.0	4y ago	Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat
CVE-2019-0199	high	—	8.0	6y ago	Apache Tomcat Denial of Service vulnerability
CVE-2025-48989	high	7.5	7.5	9mo ago	Apache Tomcat Improper Resource Shutdown or Release vulnerability	+2
CVE-2016-6816	high	7.1	7.1	9y ago	Improper Input Validation in Apache Tomcat
CVE-2023-42795	medium	—	5.5	2y ago	Apache Tomcat Incomplete Cleanup vulnerability
CVE-2023-42794	medium	—	5.5	2y ago	Apache Tomcat Incomplete Cleanup vulnerability
CVE-2023-28709	medium	—	5.5	3y ago	Apache Tomcat - Fix for CVE-2023-24998 was incomplete
CVE-2023-24998	medium	—	5.5	3y ago	Apache Commons FileUpload denial of service vulnerability	+1
CVE-2020-17527	medium	—	5.5	4y ago	While investigating bug 64830 it was discovered that Apache Tomcat 10.0.0-M1 to 10.0.0-M9, 9.0.0-M1 to 9.0.39 and 8.5.0 to 8.5.59 could re-use an HTTP request header value from the previous stream re…
CVE-2014-0095	medium	—	5.0	12y ago	Denial of service in Apache Tomcat
CVE-2014-0075	medium	—	5.0	12y ago	Integer Overflow or Wraparound in Apache Tomcat