Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Web Server

Apache Tomcat

The Apache Tomcat is an open-source Java Servlet Container developed by the Apache Software Foundation (ASF). Tomcat implements several Java EE specifications including Java Servlet JavaServer Pages (JSP) Java EL and WebSocket and provides a quotpure Javaquot HTTP web server environment in which Java code can run.

Official Site:

http://tomcat.apache.org/

Severity Summary:

Critical: 10 High: 64 Medium: 129 Low: 14
Reference
Title
Severity
CVE-2008-0128
Apache Tomcat Configuration Vulnerability
Medium
CVE-2007-5342
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2007-4724
Apache Tomcat Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2007-3382
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2007-3385
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2007-3386
Apache Tomcat Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2007-3384
Apache Tomcat Other Vulnerability
Medium
CVE-2008-5515
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2009-0783
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2009-2901
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2010-4312
Apache Tomcat Configuration Vulnerability
Medium
CVE-2011-2526
Apache Tomcat Improper Input Validation Vulnerability
Medium
CVE-2011-1582
Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2011-1475
Apache Tomcat Improper Input Validation Vulnerability
Medium
CVE-2011-1183
Apache Tomcat Other Vulnerability
Medium
CVE-2011-1419
Apache Tomcat Other Vulnerability
Medium
CVE-2011-1088
Apache Tomcat Other Vulnerability
Medium
CVE-2009-2902
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2011-0534
Apache Tomcat Resource Management Errors Vulnerability
Medium
CVE-2024-21733
Apache Tomcat Generation of Error Message Containing Sensitive Information Vulnerability
Medium
CVE-2010-4172
Apache Tomcat Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2009-2696
Apache Tomcat Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2010-2227
Apache Tomcat Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Medium
CVE-2010-1157
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Low
CVE-2007-2450
Apache Tomcat Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2013-2071
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Low
CVE-2007-1358
Apache Tomcat Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2007-1858
Apache Tomcat Other Vulnerability
Low
CVE-2011-2204
Apache Tomcat Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Low
CVE-2007-5461
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Low