Known vulnerabilities in Apache Foundation Apache Tomcat 8.5.31

Vendor: Apache Foundation

Website: https://www.apache.org

Total Security Bulletins: 32

Security bulletins (32)

Secuity bulletin	Severity	Status	Published
SB2024031386: Multiple vulnerabilities in Apache Tomcat	Medium	Patched Public exploit	13.03.2024
SB2024011929: Information disclosure in Apache Tomcat	Medium	Patched Public exploit	19.01.2024
SB2023112846: HTTP request smuggling in Apache Tomcat	Medium	Patched	28.11.2023
SB2023101084: Multiple vulnerabilities in Apache Tomcat	Medium	Patched Exploited	10.10.2023
SB2023082924: Open redirect in Apache Tomcat	Medium	Patched Public exploit	29.08.2023
SB2023052235: Denial of service in Apache Tomcat	Medium	Patched	22.05.2023
SB2023032237: Insecure cookie configuration in Apache Tomcat	Low	Patched	22.03.2023
SB2023022047: Denial of service in Apache Tomcat FileUpload component	Medium	Patched	20.02.2023
SB2022103146: HTTP request smuggling in Apache Tomcat	Medium	Patched	31.10.2022
SB2022092818: Information disclosure in Apache Tomcat	Low	Patched	28.09.2022
SB2022062338: XSS in Apache Tomcat	Medium	Patched Public exploit	23.06.2022
SB2022051715: Information disclosure in Apache Tomcat	Medium	Patched	17.05.2022
SB2022042244: Multiple vulnerabilities in Management Cloud Engine	Medium	Patched	22.04.2022
SB2022012708: Privilege escalation in Apache Tomcat	Low	Patched	27.01.2022
SB2021101507: Denial of service in Apache Tomcat	Medium	Patched	15.10.2021
SB2021091527: Denial of service in Apache Tomcat	Medium	Patched	15.09.2021
SB2021072907: HTTP request smuggling in Apache Tomcat	Medium	Patched	29.07.2021
SB2021072906: Remote denial of service in Apache Tomcat	Medium	Patched	29.07.2021
SB2021072901: Authentication bypass in Apache Tomcat JNDI Realm	Medium	Patched	29.07.2021
SB2021030115: Multiple vulnerabilities in Apache Tomcat	Medium	Patched	01.03.2021
SB2021011807: Information disclosure in Apache Tomcat	Medium	Patched	18.01.2021
SB2020120401: Information disclosure in Apache Tomcat	Medium	Patched	04.12.2020
SB2020101213: Information disclosure in Apache Tomcat	Medium	Patched	12.10.2020
SB2020071406: Multiple vulnerabilities in Apache Tomcat	Medium	Patched Public exploit	14.07.2020
SB2020062701: Denial of service in Apache Tomcat	Medium	Patched Public exploit	27.06.2020
SB2020052124: Remote code execution in Apache Tomcat	High	Patched Public exploit	21.05.2020
SB2020022111: Multiple vulnerabilities in Apache Tomcat	High	Patched Exploited	21.02.2020
SB2019121315: Session fixation in Apache Tomcat	Low	Patched	13.12.2019
SB2019112222: Privilege escalation in Apache Tomcat	Low	Patched	22.11.2019
SB2019041101: Remote code execution in Apache Tomcat	High	Patched Exploited	11.04.2019
SB2019020812: Denial of service in Apache Tomcat	Medium	Patched	08.02.2019
SB2018100401: Open redirect in Apache Tomcat	Low	Patched Public exploit	04.10.2018