Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Web Server

Apache Tomcat

The Apache Tomcat is an open-source Java Servlet Container developed by the Apache Software Foundation (ASF). Tomcat implements several Java EE specifications including Java Servlet JavaServer Pages (JSP) Java EL and WebSocket and provides a quotpure Javaquot HTTP web server environment in which Java code can run.

Official Site:

http://tomcat.apache.org/

Severity Summary:

Critical: 10 High: 64 Medium: 129 Low: 14
Reference
Title
Severity
CVE-2016-0762
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2016-0763
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2016-0706
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2018-1304
Apache Tomcat Vulnerability
Medium
CVE-2017-15706
Apache Tomcat Improperly Implemented Security Check for Standard Vulnerability
Medium
CVE-2014-0099
Apache Tomcat Numeric Errors Vulnerability
Medium
CVE-2020-13943
Apache Tomcat Vulnerability
Medium
CVE-2014-9635
Apache Tomcat 7PK - Security Features Vulnerability
Medium
CVE-2014-9634
Apache Tomcat 7PK - Security Features Vulnerability
Medium
CVE-2015-5345
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2015-5174
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2014-7810
Apache Tomcat Improper Access Control Vulnerability
Medium
CVE-2014-0227
Apache Tomcat Data Processing Errors Vulnerability
Medium
CVE-2013-4444
Apache Tomcat Improper Control of Generation of Code (Code Injection) Vulnerability
Medium
CVE-2014-0119
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2011-4858
Apache Tomcat Resource Management Errors Vulnerability
Medium
CVE-2011-1184
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2011-2729
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2007-5333
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2011-2481
Apache Tomcat Other Vulnerability
Medium
CVE-2009-0580
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2009-0033
Apache Tomcat Improper Input Validation Vulnerability
Medium
CVE-2009-0781
Apache Tomcat Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-3271
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2008-2938
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2008-1232
Apache Tomcat Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-2370
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2007-6286
Apache Tomcat Other Vulnerability
Medium
CVE-2009-2693
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2008-0002
Apache Tomcat Other Vulnerability
Medium