Apache Tomcat - CVE CyberSecurity Database News

Jan 19, 2024 Exploit Apache Apache Software Foundation Apache Tomcat

CVE-2024-21733: Generation of Error Message Containing Sensitive Information Vulnerability in Apache Tomcat

This long-read post explores the details surrounding a newly-discovered vulnerability, CVE-2024-21733, in Apache Tomcat. The vulnerability allows unauthorized users to access sensitive information by interacting

Nov 28, 2023 Exploit Java Apache Apache Software Foundation Apache Tomcat

CVE-2023-46589: Improper Input Validation Vulnerability in Apache Tomcat Leading to Request Smuggling

Apache Tomcat, one of the most popular open-source web servers and Servlet (Java) container, has been discovered to have a security vulnerability in its latest

Oct 10, 2023 Exploit Apache Apache Software Foundation Apache Tomcat

CVE-2023-45648: Addressing Improper Input Validation Vulnerability in Apache Tomcat Versions 11..-M1 to 11..-M11, 10.1.-M1 to 10.1.13, 9..-M1 to 9..81, and 8.5. to 8.5.93

Apache Tomcat has identified an Improper Input Validation vulnerability (CVE-2023-45648) in several versions of its software that could result in request smuggling when used behind

Oct 10, 2023 Windows Java Apache Apache Software Foundation Apache Tomcat

CVE-2023-42794 - Incomplete Cleanup Vulnerability in Apache Tomcat: Potential DoS on Windows

Recently, a security vulnerability has been discovered in Apache Tomcat versions 9..70 through 9..80 and 8.5.85 through 8.5.93. Known

Oct 10, 2023 Exploit Java Apache Apache Software Foundation Apache Tomcat

CVE-2023-42795: Incomplete Cleanup Vulnerability in Apache Tomcat Leads to Information Leakage

CVE-2023-42795 is an important security vulnerability that affects multiple versions of Apache Tomcat, the widely used open-source Java Servlet container. An error in the recycling