| CVE-2023-44487 |
high |
7.5 |
9.0 |
|
|
|
3y ago |
HTTP/2 contains a rapid reset vulnerability that allows for a distributed denial-of-service attack (DDoS). |
| CVE-2026-29129 |
high |
— |
8.0 |
|
|
|
2mo ago |
Apache Tomcat: Configured cipher preference order not preserved |
| CVE-2026-24880 |
high |
— |
8.0 |
|
|
|
2mo ago |
Apache Tomcat has an HTTP Request/Response Smuggling vulnerability |
| CVE-2025-53506 |
high |
— |
8.0 |
|
|
|
9mo ago |
Important: tomcat security update |
| CVE-2025-31650 |
high |
— |
8.0 |
|
|
|
11mo ago |
Apache Tomcat Denial of Service via invalid HTTP priority header |
| CVE-2024-34750 |
high |
— |
8.0 |
|
|
|
2y ago |
Apache Tomcat - Denial of Service |
| CVE-2024-24549 |
high |
— |
8.0 |
|
|
|
2y ago |
Important: tomcat security and bug fix update |
| CVE-2020-13934 |
high |
— |
8.0 |
|
|
|
4y ago |
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat |
| CVE-2019-0199 |
high |
— |
8.0 |
|
|
|
6y ago |
Apache Tomcat Denial of Service vulnerability |
| CVE-2025-48989 |
high |
7.5 |
7.5 |
|
|
|
9mo ago |
Apache Tomcat Improper Resource Shutdown or Release vulnerability |
| CVE-2016-6816 |
high |
7.1 |
7.1 |
|
|
|
9y ago |
Improper Input Validation in Apache Tomcat |
| CVE-2023-42794 |
medium |
— |
5.5 |
|
|
|
2y ago |
Moderate: tomcat security update |
| CVE-2023-42795 |
medium |
— |
5.5 |
|
|
|
2y ago |
Moderate: tomcat security update |
| CVE-2023-28709 |
medium |
— |
5.5 |
|
|
|
3y ago |
Moderate: tomcat security and bug fix update |
| CVE-2023-24998 |
medium |
— |
5.5 |
|
|
|
3y ago |
Moderate: tomcat security and bug fix update |
| CVE-2020-17527 |
medium |
— |
5.5 |
|
|
|
4y ago |
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat |
| CVE-2014-0095 |
medium |
— |
5.0 |
|
|
|
12y ago |
Denial of service in Apache Tomcat |
| CVE-2014-0075 |
medium |
— |
5.0 |
|
|
|
12y ago |
Integer Overflow or Wraparound in Apache Tomcat |
| CVE-2026-32990 |
unknown |
— |
— |
|
|
|
2mo ago |
Apache Tomcat has an Improper Input Validation vulnerability |
| CVE-2026-24734 |
unknown |
— |
— |
|
|
|
3mo ago |
Apache Tomcat has an Improper Input Validation vulnerability |
| CVE-2024-52317 |
unknown |
— |
— |
|
|
|
2y ago |
Apache Tomcat Request and/or response mix-up |
| CVE-2024-21733 |
unknown |
— |
— |
|
|
|
2y ago |
Apache Tomcat vulnerable to Generation of Error Message Containing Sensitive Information |
| CVE-2023-34981 |
unknown |
— |
— |
|
|
|
3y ago |
Apache Tomcat vulnerable to information leak |
| CVE-2022-42252 |
unknown |
— |
— |
|
|
|
4y ago |
Apache Tomcat may reject request containing invalid Content-Length header |
| CVE-2020-13943 |
unknown |
— |
— |
|
|
|
4y ago |
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat |