org.apache.tomcat.embed:tomcat-embed-core vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2008-1947Mediumorg.apache.tomcat:tomcat: Apache Tomcat Cross-site scripting (XSS) vulnerabilityCVE-2020-11996Highorg.apache.tomcat:tomcat: Uncontrolled Resource Consumption in Apache TomcatCVE-2021-25122Highorg.apache.tomcat.embed:tomcat-embed-core: Exposure of Sensitive Information to an Unauthorized Actor in Apache TomcatCVE-2021-24122Mediumorg.apache.tomcat.embed:tomcat-embed-core: Information Disclosure in Apache TomcatCVE-2021-25329Highorg.apache.tomcat.embed:tomcat-embed-core: Potential remote code execution in Apache TomcatCVE-2020-1938Criticalorg.apache.tomcat.embed:tomcat-embed-core: Improper Privilege Management in TomcatCVE-2019-0199Highorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat Denial of Service vulnerabilityCVE-2020-9484Highorg.apache.tomcat:tomcat-catalina: Potential remote code execution in Apache TomcatCVE-2019-17569Mediumorg.apache.tomcat.embed:tomcat-embed-core: Potential HTTP request smuggling in Apache TomcatCVE-2020-1935Mediumorg.apache.tomcat.embed:tomcat-embed-core: Potential HTTP request smuggling in Apache TomcatCVE-2019-12418Highorg.apache.tomcat.embed:tomcat-embed-core: Insufficiently Protected Credentials in Apache TomcatCVE-2019-17563Highorg.apache.tomcat.embed:tomcat-embed-core: In Apache Tomcat, when using FORM authentication there was a narrow window where an attacker could…CVE-2019-10072Highorg.apache.tomcat.embed:tomcat-embed-core: Improper Locking in Apache TomcatCVE-2019-0221Mediumorg.apache.tomcat.embed:tomcat-embed-core: Cross-site scripting in Apache TomcatCVE-2019-0232Highorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat OS Command Injection vulnerabilityCVE-2018-8037Mediumorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat Race Condition vulnerabilityCVE-2018-8034Highorg.apache.tomcat.embed:tomcat-embed-core: The host name verification missing in Apache TomcatCVE-2018-8014Criticalorg.apache.tomcat.embed:tomcat-embed-core: The defaults settings for the CORS filter provided in Apache Tomcat are insecure and enable…CVE-2018-1336Highorg.apache.tomcat.embed:tomcat-embed-core: In Apache Tomcat there is an improper handing of overflow in the UTF-8 decoder CVE-2018-1305Mediumorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat information exposure vulnerabilityCVE-2018-1304Mediumorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat unauthorized access vulnerabilityCVE-2018-11784Mediumorg.apache.tomcat.embed:tomcat-embed-core: Apache Tomcat Open Redirect vulnerabilityCVE-2017-12615Highorg.apache.tomcat.embed:tomcat-embed-core: When running Apache Tomcat on Windows with HTTP PUTs enabled it was possible to upload a JSP file…

Stop the waste.
Protect your environment with Kodem.