Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Web Server

Apache Tomcat

The Apache Tomcat is an open-source Java Servlet Container developed by the Apache Software Foundation (ASF). Tomcat implements several Java EE specifications including Java Servlet JavaServer Pages (JSP) Java EL and WebSocket and provides a quotpure Javaquot HTTP web server environment in which Java code can run.

Official Site:

http://tomcat.apache.org/

Severity Summary:

Critical: 10 High: 64 Medium: 129 Low: 14
Reference
Title
Severity
CVE-2008-1947
Apache Tomcat Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2007-3383
Apache Tomcat Other Vulnerability
Medium
CVE-2012-3546
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2014-0033
Apache Tomcat Improper Input Validation Vulnerability
Medium
CVE-2013-4590
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2013-4322
Apache Tomcat Improper Input Validation Vulnerability
Medium
CVE-2013-4286
Apache Tomcat Improper Input Validation Vulnerability
Medium
CVE-2013-6357
Apache Tomcat Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2013-2067
Apache Tomcat Improper Authentication Vulnerability
Medium
CVE-2012-3544
Apache Tomcat Improper Input Validation Vulnerability
Medium
CVE-2012-4431
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2012-5568
Apache Tomcat Vulnerability
Medium
CVE-2014-0095
Apache Tomcat Improper Input Validation Vulnerability
Medium
CVE-2012-5887
Apache Tomcat Improper Authentication Vulnerability
Medium
CVE-2012-5886
Apache Tomcat Improper Authentication Vulnerability
Medium
CVE-2012-5885
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2012-2733
Apache Tomcat Improper Input Validation Vulnerability
Medium
CVE-2012-0022
Apache Tomcat Numeric Errors Vulnerability
Medium
CVE-2011-3375
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2011-5064
Apache Tomcat Cryptographic Issues Vulnerability
Medium
CVE-2011-5063
Apache Tomcat Improper Authentication Vulnerability
Medium
CVE-2011-5062
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2014-0075
Apache Tomcat Numeric Errors Vulnerability
Medium
CVE-2014-0096
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2011-3376
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2018-1305
Apache Tomcat Vulnerability
Medium
CVE-2020-1935
Apache Tomcat Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
Medium
CVE-2019-17569
Apache Tomcat Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
Medium
CVE-2018-11784
Apache Tomcat URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2018-8037
Apache Tomcat Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition) Vulnerability
Medium