VIR Vulnerability Intelligence Relay

Package impact

java Maven / org.apache.tomcat:tomcat-coyote

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2017-5651 critical 9.8 9.8 9y ago Expected Behavior Violation in Apache Tomcat susedebianjavaapache
CVE-2023-44487 high 7.5 9.0 3y ago HTTP/2 Stream Cancellation Attack rockylinuxredhatdebiansuse+11
CVE-2026-29129 high 8.0 2mo ago Apache Tomcat: Configured cipher preference order not preserved susedebianjava
CVE-2026-24880 high 8.0 2mo ago Apache Tomcat has an HTTP Request/Response Smuggling vulnerability susedebianjava
CVE-2025-53506 high 8.0 9mo ago Important: tomcat security update redhatrockylinuxsusedebian+1
CVE-2025-31650 high 8.0 11mo ago Apache Tomcat Denial of Service via invalid HTTP priority header archredhatrockylinuxsuse+2
CVE-2024-34750 high 8.0 2y ago Apache Tomcat - Denial of Service redhatrockylinuxsusedebian+1
CVE-2024-24549 high 8.0 2y ago Apache Tomcat Denial of Service due to improper input validation vulnerability for HTTP/2 requests redhatsuserockylinuxdebian+1
CVE-2020-13934 high 8.0 4y ago Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat archsusedebianjava
CVE-2019-0199 high 8.0 6y ago Apache Tomcat Denial of Service vulnerability susedebianjava
CVE-2025-48989 high 7.5 7.5 9mo ago Apache Tomcat Improper Resource Shutdown or Release vulnerability redhatrockylinuxsusedebian+2
CVE-2016-6816 high 7.1 7.1 9y ago Improper Input Validation in Apache Tomcat susedebianjavaapache
CVE-2023-42794 medium 5.5 2y ago Apache Tomcat Incomplete Cleanup vulnerability redhatsusedebianjava
CVE-2023-42795 medium 5.5 2y ago Apache Tomcat Incomplete Cleanup vulnerability redhatsusedebianjava
CVE-2023-28709 medium 5.5 3y ago Apache Tomcat - Fix for CVE-2023-24998 was incomplete redhatsusedebianjava
CVE-2023-24998 medium 5.5 3y ago Apache Commons FileUpload denial of service vulnerability redhatarchsusedebian+1
CVE-2020-17527 medium 5.5 4y ago Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat archsusedebianjava
CVE-2014-0095 medium 5.0 12y ago Denial of service in Apache Tomcat javaapache
CVE-2014-0075 medium 5.0 12y ago Integer Overflow or Wraparound in Apache Tomcat javaapache
CVE-2026-32990 unknown 2mo ago Apache Tomcat has an Improper Input Validation vulnerability debianjava
CVE-2026-24734 unknown 3mo ago Apache Tomcat has an Improper Input Validation vulnerability susedebianjavagcp
CVE-2024-52317 unknown 2y ago Apache Tomcat Request and/or response mix-up susedebianjava
CVE-2024-21733 unknown 2y ago Apache Tomcat vulnerable to Generation of Error Message Containing Sensitive Information susedebianjava
CVE-2023-34981 unknown 3y ago Apache Tomcat vulnerable to information leak susedebianjava
CVE-2022-42252 unknown 4y ago Apache Tomcat may reject request containing invalid Content-Length header susedebianjava
CVE-2020-13943 unknown 4y ago Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat susedebianjava