Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Apache TomcatInput Validation

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2457025

Apache TomcatApache Tomcat: OCSP checks sometimes soft-fail with FFM even when soft-fail is disabled

Risk 48
Severity
6.5
First published (updated )
CVE-2026-34500

Apache TomcatApache Tomcat: Fix for CVE-2025-66614 is incomplete

Risk 29
Severity
5.3
First published (updated )
CVE-2026-32990

Apache TomcatApache Tomcat: Occasionally open redirect

Risk 40
Severity
6.1
First published (updated )
CVE-2026-25854

Apache TomcatInput Validation

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2440430
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache TomcatApache Tomcat: Security constraint bypass with HTTP/0.9

Risk 28
Severity
6.5
EPSS
0.04%
First published (updated )
CVE-2026-24733

Apache TomcatImproper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred (includi…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2406588

Apache TomcatApache Tomcat: Delayed cleaning of multi-part upload temporary files may lead to DoS

Risk 35
Severity
5.3
First published (updated )
CVE-2025-61795

maven/org.springframework:spring-webmvcPath traversal vulnerability on non-compliant Servlet containers

Risk 35
Severity
5.9
First published (updated )
CVE-2025-41242

Apache TomcatAllocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. This issue aff…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2373015
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache TomcatPath Equivalence: 'file.Name' (Internal Dot) leading to Remote Code Execution and/or Information dis…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2351129

Apache TomcatURL-encoded request path information can be broken for concurrent requests on ajp-listener causing t…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2293069

Apache TomcatApache Tomcat: Leaking of unrelated request bodies in default error page

Risk 32
Severity
5.3
EPSS
0.69%
First published (updated )
CVE-2024-21733

Apache TomcatApache Tomcat: Trailer header parsing too lenient

Risk 29
Severity
5.3
First published (updated )
CVE-2023-45648

Apache TomcatApache Tomcat: Failure during request clean-up leads to sensitive data leaking to subsequent requests

Risk 29
Severity
5.3
First published (updated )
CVE-2023-42795
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache TomcatApache Tomcat: Open redirect with FORM authentication

Risk 40
Severity
6.5
First published (updated )
CVE-2023-41080

Apache TomcatThe fix for bug CVE-2020-9484 introduced a time of check, time of use vulnerability into Apache Tomc…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2047417

redhat/tomcatAuth weakness in JNDIRealm

Risk 46
Severity
6.5
First published (updated )
CVE-2021-30640

McAfee ePolicy OrchestratorIncorrect Transfer-Encoding handling with HTTP/1.0

Risk 29
Severity
5.3
First published (updated )
CVE-2021-33037

Apache TomcatInfoleak

Risk 37
Severity
5.9
First published (updated )
CVE-2021-24122
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache TomcatInfoleak

Risk 28
Severity
5.3
First published (updated )
CVE-2020-13943

Apache TomcatXSS

Risk 41
Severity
4.8
First published (updated )
CVE-2020-1935

redhat/jws5-tomcatXSS

Risk 41
Severity
4.8
First published (updated )
CVE-2019-17569

Apache TomcatLast updated 25 August 2025

Risk 37
Severity
5.9
First published (updated )
CVE-2019-2684

Apache TomcatXSS

Risk 40
Severity
6.1
First published (updated )
CVE-2019-0221
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache TomcatLast updated 18 August 2025

Risk 23
Severity
4.3
First published (updated )
CVE-2018-11784

Apache TomcatLast updated 18 August 2025

Risk 37
Severity
5.9
First published (updated )
CVE-2018-1304

Apache TomcatLast updated 18 August 2025

Risk 40
Severity
6.5
First published (updated )
CVE-2018-1305

Apache TomcatLast updated 25 August 2025

Risk 28
Severity
5.3
First published (updated )
CVE-2017-15706

Apache TomcatThe CORS Filter in Apache Tomcat 9.0.0.M1 to 9.0.0.M21, 8.5.0 to 8.5.15, 8.0.0.RC1 to 8.0.44 and 7.0…

Risk 23
Severity
4.3
First published (updated )
CVE-2017-7674
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203