Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Apache Tomcat Improper Encoding or Escaping of Output Vulnerability - CVE-2026-34483 - Vulnerability Database
Apache Tomcat

Apache Tomcat Improper Encoding or Escaping of Output Vulnerability - CVE-2026-34483

High
Reference: CVE-2026-34483
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2026-34483
Title: Apache Tomcat Improper Encoding or Escaping of Output Vulnerability
Overview:

Improper Encoding or Escaping of Output vulnerability in the JsonAccessLogValve component of Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.20 from 10.1.0-M1 through 10.1.53 from 9.0.40 through 9.0.116. Users are recommended to upgrade to version 11.0.21 10.1.54 or 9.0.117 which fix the issue.