org.apache.tomcat:tomcat-coyote vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-32990Mediumorg.apache.tomcat:tomcat: Apache Tomcat has an Improper Input Validation vulnerabilityCVE-2026-29129Highorg.apache.tomcat:tomcat: Apache Tomcat: Configured cipher preference order not preservedCVE-2026-24880Highorg.apache.tomcat:tomcat-coyote: Apache Tomcat has an HTTP Request/Response Smuggling vulnerabilityCVE-2026-24734Highorg.apache.tomcat:tomcat-coyote: Apache Tomcat has an Improper Input Validation vulnerabilityCVE-2026-24733Loworg.apache.tomcat:tomcat-coyote: Apache Tomcat - Security constraint bypass with HTTP/0.9CVE-2025-66614Mediumorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat - Client certificate verification bypassCVE-2025-48989Highorg.apache.tomcat:tomcat-coyote: Apache Tomcat Improper Resource Shutdown or Release vulnerabilityCVE-2025-53506Highorg.apache.tomcat:tomcat-coyote: Apache Tomcat Coyote vulnerable to Denial of Service via excessive HTTP/2 streamsCVE-2025-52434Mediumorg.apache.tomcat:tomcat-coyote: Apache Tomcat is vulnerable to resource exhaustion when using the APR/Native connectorCVE-2025-31650Mediumorg.apache.tomcat:tomcat-coyote: Apache Tomcat Denial of Service via invalid HTTP priority headerCVE-2024-52317Mediumorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat Request and/or response mix-upCVE-2024-38286Highorg.apache.tomcat:tomcat-coyote: Apache Tomcat Allocation of Resources Without Limits or Throttling vulnerabilityCVE-2024-34750Highorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat - Denial of ServiceCVE-2024-24549Mediumorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat Denial of Service due to improper input validation vulnerability for HTTP/2 requestsCVE-2024-21733Mediumorg.apache.tomcat:tomcat-coyote: Apache Tomcat vulnerable to Generation of Error Message Containing Sensitive InformationCVE-2023-45648Mediumorg.apache.tomcat:tomcat: Apache Tomcat Improper Input Validation vulnerabilityCVE-2023-44487Mediumgolang.org/x/net: HTTP/2 Stream Cancellation AttackCVE-2023-42794Mediumorg.apache.tomcat:tomcat-coyote: Apache Tomcat Incomplete Cleanup vulnerabilityCVE-2023-28709Highorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat - Fix for CVE-2023-24998 was incompleteCVE-2023-34981Highorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat vulnerable to information leakCVE-2023-24998Highcommons-fileupload:commons-fileupload: Apache Commons FileUpload denial of service vulnerabilityCVE-2022-42252Highorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat may reject request containing invalid Content-Length headerCVE-2014-0095Mediumorg.apache.tomcat:tomcat-coyote: Denial of service in Apache TomcatCVE-2014-0075Mediumorg.apache.tomcat:tomcat: Integer Overflow or Wraparound in Apache TomcatCVE-2017-5651Criticalorg.apache.tomcat:tomcat-coyote: Expected Behavior Violation in Apache Tomcat

Stop the waste.
Protect your environment with Kodem.