VIR Vulnerability Intelligence Relay

Package impact

java Maven / org.apache.tomcat:tomcat-util

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2025-52434 high 8.0 9mo ago Important: tomcat security update redhatrockylinuxsusedebian+1
CVE-2024-38286 high 8.0 2y ago Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from 10.1.0-M1 through 10.1.24, from 9.0.13 … redhatsusedebianjava
CVE-2016-8745 high 7.5 7.5 9y ago A bug in the error handling of the send file code for the NIO HTTP connector in Apache Tomcat 9.0.0.M1 to 9.0.0.M13, 8.5.0 to 8.5.8, 8.0.0.RC1 to 8.0.39, 7.0.0 to 7.0.73 and 6.0.16 to 6.0.48 resulted… susedebianjavaapache
CVE-2014-0099 medium 4.3 12y ago Improper Neutralization of CRLF Sequences in HTTP Headers in Apache Tomcat susejavaapache
CVE-2022-45143 unknown 3y ago The JsonErrorReportValve in Apache Tomcat 8.5.83, 9.0.40 to 9.0.68 and 10.1.0-M1 to 10.1.1 did not escape the type, message or description values. In some circumstances these are constructed from use… susedebianjava