Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven

org.apache.tomcat.embed:tomcat-embed-core

maven

Core Tomcat implementation

View on repo1.maven.org

High Security Advisories for org.apache.tomcat.embed:tomcat-embed-core in maven Clear Filters

High
4 months ago

Apache Tomcat - DoS in multipart upload GSA_kwCzR0hTQS1oM2djLXFmcXEtNmg4Zs4ABJER

maven org.apache.tomcat.embed:tomcat-embed-core, org.apache.tomcat:tomcat-catalina
High
10 months ago

Apache Tomcat Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability GSA_kwCzR0hTQS01ajMzLWN2dnItdzI0Nc4ABChZ

maven org.apache.tomcat.embed:tomcat-embed-core, org.apache.tomcat:tomcat-catalina
High
over 1 year ago

Apache Tomcat - Denial of Service GSA_kwCzR0hTQS13bTl3LXJqajMtajM1Ns4AA9gV

maven org.apache.tomcat.embed:tomcat-embed-core, org.apache.tomcat:tomcat-coyote
High
about 2 years ago

Apache Tomcat - Fix for CVE-2023-24998 was incomplete GSA_kwCzR0hTQS1jeDZoLTg2eHctOXgzNM4AA0cs

maven org.apache.tomcat:tomcat-coyote, org.apache.tomcat.embed:tomcat-embed-core
High
over 2 years ago

Apache Tomcat vulnerable to information leak GSA_kwCzR0hTQS1tcHB2LTc5Y2gtdnc2cc4AAz98

maven org.apache.tomcat:tomcat-coyote, org.apache.tomcat.embed:tomcat-embed-core
High
over 2 years ago

Apache Tomcat improperly escapes input from JsonErrorReportValve GSA_kwCzR0hTQS1ycTJ3LTM3aDktdmc5NM4AAwuy

maven org.apache.tomcat:tomcat-util, org.apache.tomcat:tomcat-catalina, org.apache.tomcat.embed:tomcat-embed-core
High
almost 3 years ago

Apache Tomcat may reject request containing invalid Content-Length header GSA_kwCzR0hTQS1wMjJ4LWc5cHgtMzk0Nc4AAvm5

maven org.apache.tomcat:tomcat-coyote, org.apache.tomcat.embed:tomcat-embed-core
High
over 3 years ago

Unrestricted Upload of File with Dangerous Type Apache Tomcat GSA_kwCzR0hTQS14amdoLTg0aHgtNTZjNc4AATjr

maven org.apache.tomcat.embed:tomcat-embed-core, org.apache.tomcat:tomcat-catalina
High
over 4 years ago

Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWozOWMtYzhoai14NGoz

maven org.apache.tomcat.embed:tomcat-embed-core
High
over 4 years ago

Potential remote code execution in Apache Tomcat MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpnd3ItM3FtMy0yNmYz

maven org.apache.tomcat.embed:tomcat-embed-core
High
over 5 years ago

Apache Tomcat Denial of Service vulnerability MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFjeGgtdzNqOS01OHFy

maven org.apache.tomcat.embed:tomcat-embed-core
High
almost 6 years ago

Insufficiently Protected Credentials in Apache Tomcat MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhoM2oteDRtYy1nNDhy

maven org.apache.tomcat.embed:tomcat-embed-core
High
almost 6 years ago

In Apache Tomcat, when using FORM authentication there was a narrow window where an attacker could perform a session fixation attack MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl4Y2otYzhjci04YzNj

maven org.apache.tomcat.embed:tomcat-embed-core
High
over 6 years ago

Improper Locking in Apache Tomcat MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE0aGctcm1xMi01MnE5

maven org.apache.tomcat.embed:tomcat-embed-core
High
over 6 years ago

Apache Tomcat OS Command Injection vulnerability MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh2bXgtcW1jaC1tcHFn

maven org.apache.tomcat.embed:tomcat-embed-core
High
almost 7 years ago

The host name verification missing in Apache Tomcat MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ2ajMtcjRwai00ODM1

maven org.apache.tomcat.embed:tomcat-embed-core
High
almost 7 years ago

In Apache Tomcat there is an improper handing of overflow in the UTF-8 decoder MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW01OWMtanBjOC1tMng0

maven org.apache.tomcat.embed:tomcat-embed-core
High
almost 7 years ago

When running Apache Tomcat on Windows with HTTP PUTs enabled it was possible to upload a JSP file to the server MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBqZnItcWYzcC0zcTI1

maven org.apache.tomcat.embed:tomcat-embed-core

Filter by Severity

High 18 Moderate 14 Critical 4 Low 1