| No Vulnerabilities found |
|---|
| No Misconfigurations found |
|---|
| commons-fileupload:commons-fileupload |
CVE-2025-48976 |
HIGH |
1.5 |
1.6.0 |
http://www.openwall.com/lists/oss-security/2025/06/16/4
https://access.redhat.com/errata/RHSA-2025:14181
https://bugzilla.redhat.com/2373015
https://bugzilla.redhat.com/2373018
https://bugzilla.redhat.com/2373020
https://bugzilla.redhat.com/2373309
https://bugzilla.redhat.com/2379374
https://bugzilla.redhat.com/2379382
https://bugzilla.redhat.com/2379386
https://bugzilla.redhat.com/show_bug.cgi?id=2373015
https://bugzilla.redhat.com/show_bug.cgi?id=2373018
https://bugzilla.redhat.com/show_bug.cgi?id=2373020
https://bugzilla.redhat.com/show_bug.cgi?id=2373309
https://bugzilla.redhat.com/show_bug.cgi?id=2379374
https://bugzilla.redhat.com/show_bug.cgi?id=2379382
https://bugzilla.redhat.com/show_bug.cgi?id=2379386
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48988
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48989
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49125
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52434
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52520
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53506
https://errata.almalinux.org/9/ALSA-2025-14181.html
https://errata.rockylinux.org/RLSA-2025:14177
https://github.com/apache/commons-fileupload
https://github.com/apache/commons-fileupload/commit/2108495a4775910b8559f18ed5a779d60542ee96 (commons-fileupload-1.6.0-RC1)
https://github.com/apache/commons-fileupload/commit/b247774a72a044f5d5380ae947140ee80af4e78b
https://github.com/apache/commons-fileupload/commit/bf68f63cfb312ef4710fb3dfb4d8e4e1665f4497
https://github.com/apache/tomcat/commit/667ddd76e2a0e762f3a784d86f0d25e7fd7cdb86 (10.1.42)
https://github.com/apache/tomcat/commit/74f69ffaf61e54c727603e7e831fe20f0ac5d2a7 (11.0.8)
https://github.com/apache/tomcat/commit/97790a35a27d236fa053e660676c3f8196284d93
https://github.com/apache/tomcat/commit/97790a35a27d236fa053e660676c3f8196284d93 (9.0.106)
https://linux.oracle.com/cve/CVE-2025-48976.html
https://linux.oracle.com/errata/ELSA-2025-14181.html
https://lists.apache.org/thread/fbs3wrr3p67vkjcxogqqqqz45pqtso12
https://lists.debian.org/debian-lts-announce/2025/07/msg00008.html
https://lists.debian.org/debian-lts-announce/2025/07/msg00009.html
https://nvd.nist.gov/vuln/detail/CVE-2025-48976
https://www.cve.org/CVERecord?id=CVE-2025-48976
|
| commons-io:commons-io |
CVE-2024-47554 |
HIGH |
2.11.0 |
2.14.0 |
http://www.openwall.com/lists/oss-security/2024/10/03/2
https://github.com/apache/commons-io
https://lists.apache.org/thread/6ozr91rr9cj5lm0zyhv30bsp317hk5z1
https://nvd.nist.gov/vuln/detail/CVE-2024-47554
https://security.netapp.com/advisory/ntap-20250131-0010
https://security.netapp.com/advisory/ntap-20250131-0010/
https://ubuntu.com/security/notices/USN-8191-1
https://www.cve.org/CVERecord?id=CVE-2024-47554
|
| io.netty:netty-codec |
CVE-2026-42583 |
HIGH |
4.1.128.Final |
4.1.133.Final |
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-mj4r-2hfc-f8p6
https://nvd.nist.gov/vuln/detail/CVE-2026-42583
|
| io.netty:netty-codec-dns |
CVE-2026-42579 |
HIGH |
4.1.128.Final |
4.2.13.Final, 4.1.133.Final |
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-cm33-6792-r9fm
https://nvd.nist.gov/vuln/detail/CVE-2026-42579
https://tools.ietf.org/html/rfc1035#section-2.3.4
https://tools.ietf.org/html/rfc1035#section-4.1.4
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
HIGH |
4.1.128.Final |
4.1.132.Final, 4.2.10.Final |
https://access.redhat.com/security/cve/CVE-2026-33870
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-pwqr-wmgm-9rr8
https://nvd.nist.gov/vuln/detail/CVE-2026-33870
https://w4ke.info/2025/06/18/funky-chunks.html
https://w4ke.info/2025/10/29/funky-chunks-2.html
https://www.cve.org/CVERecord?id=CVE-2026-33870
https://www.rfc-editor.org/rfc/rfc9110
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
HIGH |
4.1.128.Final |
4.2.13.Final, 4.1.133.Final |
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-57rv-r2g8-2cj3
https://nvd.nist.gov/vuln/detail/CVE-2026-42584
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
HIGH |
4.1.128.Final |
4.2.13.Final, 4.1.133.Final |
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
https://nvd.nist.gov/vuln/detail/CVE-2026-42587
|
| io.netty:netty-codec-http2 |
CVE-2026-33871 |
HIGH |
4.1.128.Final |
4.1.132.Final, 4.2.11.Final |
https://access.redhat.com/security/cve/CVE-2026-33871
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-w9fj-cfpg-grvv
https://nvd.nist.gov/vuln/detail/CVE-2026-33871
https://www.cve.org/CVERecord?id=CVE-2026-33871
|
| io.netty:netty-codec-http2 |
CVE-2026-42587 |
HIGH |
4.1.128.Final |
4.2.13.Final, 4.1.133.Final |
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
https://nvd.nist.gov/vuln/detail/CVE-2026-42587
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-41293 |
CRITICAL |
10.1.42 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/13
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/19f17a257797e8d139b33ff9c88d362a273be148
https://github.com/apache/tomcat/commit/1c70480466572c9192ed412ebefcd43fc63137fd
https://github.com/apache/tomcat/commit/2a2476460e823789f530a22207873ea8cd6eff3b
https://github.com/apache/tomcat/commit/3915fd27e6810b14ccd21e3d900bd8faef44d3df
https://github.com/apache/tomcat/commit/57c2b3bfd62792631e1df24cf4237b990a0b36fa
https://github.com/apache/tomcat/commit/c2925554c677da57390f940d856871e18daaacab
https://github.com/apache/tomcat/commit/cf9452443bcbf3b1a4b435ef7d624364f1b65ca3
https://github.com/apache/tomcat/commit/e5cef9618c3f4fd31bd6fb1e83f0f18022280dac
https://github.com/apache/tomcat/commit/f72a6174ab1f0f5a053435f80448b4f6837fe6d7
https://lists.apache.org/thread/qwg0q16z7xkb2qrr853wdll5531mvl1r
https://nvd.nist.gov/vuln/detail/CVE-2026-41293
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-43512 |
CRITICAL |
10.1.42 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/8
https://github.com/apache/tomcat/commit/3d4d3fae07a6cd9c2eb193c5491001740ec64448
https://github.com/apache/tomcat/commit/6565a6cb6499e56fe2f34457cec99f9d1c4f39e9
https://github.com/apache/tomcat/commit/a99c355e8199adbfd67c9a1fffbd85b810b196cd
https://lists.apache.org/thread/7x09x7o12solvclslw3sz0288xc8wx73
https://nvd.nist.gov/vuln/detail/CVE-2026-43512
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-43515 |
CRITICAL |
10.1.42 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/11
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/276087d9c7abbcecc6c4fb4e4b08cf64780c6e36
https://github.com/apache/tomcat/commit/c621317382682206fb58ab92ebd3e1b6fdd10ce9
https://github.com/apache/tomcat/commit/db919ff9912b4d61d1b702a1342b8bde39270031
https://lists.apache.org/thread/746nxfxod0wsocxtmv8pb8nkgmwpc6bb
https://nvd.nist.gov/vuln/detail/CVE-2026-43515
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2025-48989 |
HIGH |
10.1.42 |
11.0.10, 10.1.44, 9.0.108 |
http://www.openwall.com/lists/oss-security/2025/08/13/2
https://access.redhat.com/errata/RHSA-2025:14181
https://bugzilla.redhat.com/2373015
https://bugzilla.redhat.com/2373018
https://bugzilla.redhat.com/2373020
https://bugzilla.redhat.com/2373309
https://bugzilla.redhat.com/2379374
https://bugzilla.redhat.com/2379382
https://bugzilla.redhat.com/2379386
https://bugzilla.redhat.com/show_bug.cgi?id=2373015
https://bugzilla.redhat.com/show_bug.cgi?id=2373018
https://bugzilla.redhat.com/show_bug.cgi?id=2373020
https://bugzilla.redhat.com/show_bug.cgi?id=2373309
https://bugzilla.redhat.com/show_bug.cgi?id=2379374
https://bugzilla.redhat.com/show_bug.cgi?id=2379382
https://bugzilla.redhat.com/show_bug.cgi?id=2379386
https://cert-portal.siemens.com/productcert/html/ssa-032379.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48988
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48989
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49125
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52434
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52520
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53506
https://errata.almalinux.org/9/ALSA-2025-14181.html
https://errata.rockylinux.org/RLSA-2025:14177
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/73c04a10395774bda71a0b37802cf983662ce255
https://github.com/apache/tomcat/commit/73c04a10395774bda71a0b37802cf983662ce255 (10.1.44)
https://github.com/apache/tomcat/commit/f362c8eb3b8ec5b7f312f7f5610731c0fb299a06
https://github.com/apache/tomcat/commit/f362c8eb3b8ec5b7f312f7f5610731c0fb299a06 (11.0.10)
https://github.com/apache/tomcat/commit/f36b8a4eea4ce8a0bc035079e1d259d29f5eb7bf
https://github.com/apache/tomcat/commit/f36b8a4eea4ce8a0bc035079e1d259d29f5eb7bf (9.0.108)
https://linux.oracle.com/cve/CVE-2025-48989.html
https://linux.oracle.com/errata/ELSA-2025-14181.html
https://lists.apache.org/thread/9ydfg0xr0tchmglcprhxgwhj0hfwxlyf
https://nvd.nist.gov/vuln/detail/CVE-2025-48989
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2025-48989
https://www.kb.cert.org/vuls/id/767506
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2025-52520 |
HIGH |
10.1.42 |
11.0.9, 10.1.43, 9.0.107 |
http://www.openwall.com/lists/oss-security/2025/07/10/12
https://access.redhat.com/errata/RHSA-2025:14181
https://bugzilla.redhat.com/2373015
https://bugzilla.redhat.com/2373018
https://bugzilla.redhat.com/2373020
https://bugzilla.redhat.com/2373309
https://bugzilla.redhat.com/2379374
https://bugzilla.redhat.com/2379382
https://bugzilla.redhat.com/2379386
https://bugzilla.redhat.com/show_bug.cgi?id=2373015
https://bugzilla.redhat.com/show_bug.cgi?id=2373018
https://bugzilla.redhat.com/show_bug.cgi?id=2373020
https://bugzilla.redhat.com/show_bug.cgi?id=2373309
https://bugzilla.redhat.com/show_bug.cgi?id=2379374
https://bugzilla.redhat.com/show_bug.cgi?id=2379382
https://bugzilla.redhat.com/show_bug.cgi?id=2379386
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48988
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48989
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49125
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52434
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52520
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53506
https://errata.almalinux.org/9/ALSA-2025-14181.html
https://errata.rockylinux.org/RLSA-2025:14177
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/927d66fbc294cb65242102b817a45fd80834e040
https://github.com/apache/tomcat/commit/927d66fbc294cb65242102b817a45fd80834e040 (9.0.107)
https://github.com/apache/tomcat/commit/a51e4bedccfafd35b7cdd0ee3e22267dee9f90db
https://github.com/apache/tomcat/commit/a51e4bedccfafd35b7cdd0ee3e22267dee9f90db (11.0.9)
https://github.com/apache/tomcat/commit/fc42bbccb9041fafd194fbfdf3eab1d44cb5c45c
https://github.com/apache/tomcat/commit/fc42bbccb9041fafd194fbfdf3eab1d44cb5c45c (10.1.43)
https://linux.oracle.com/cve/CVE-2025-52520.html
https://linux.oracle.com/errata/ELSA-2025-14181.html
https://lists.apache.org/thread/trqq01bbxw6c92zx69kx2mw2qgmfy0o5
https://lists.debian.org/debian-lts-announce/2025/07/msg00009.html
https://nvd.nist.gov/vuln/detail/CVE-2025-52520
https://www.cve.org/CVERecord?id=CVE-2025-52520
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2025-53506 |
HIGH |
10.1.42 |
9.0.107, 10.1.43, 11.0.9 |
http://www.openwall.com/lists/oss-security/2025/07/10/13
https://access.redhat.com/errata/RHSA-2025:14181
https://bugzilla.redhat.com/2373015
https://bugzilla.redhat.com/2373018
https://bugzilla.redhat.com/2373020
https://bugzilla.redhat.com/2373309
https://bugzilla.redhat.com/2379374
https://bugzilla.redhat.com/2379382
https://bugzilla.redhat.com/2379386
https://bugzilla.redhat.com/show_bug.cgi?id=2373015
https://bugzilla.redhat.com/show_bug.cgi?id=2373018
https://bugzilla.redhat.com/show_bug.cgi?id=2373020
https://bugzilla.redhat.com/show_bug.cgi?id=2373309
https://bugzilla.redhat.com/show_bug.cgi?id=2379374
https://bugzilla.redhat.com/show_bug.cgi?id=2379382
https://bugzilla.redhat.com/show_bug.cgi?id=2379386
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48976
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48988
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48989
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49125
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52434
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52520
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53506
https://errata.almalinux.org/9/ALSA-2025-14181.html
https://errata.rockylinux.org/RLSA-2025:14177
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/2aa6261276ebe50b99276953591e3a2be7898bdb
https://github.com/apache/tomcat/commit/2aa6261276ebe50b99276953591e3a2be7898bdb (10.1.43)
https://github.com/apache/tomcat/commit/434772930f362145516dd60681134e7f0cf8115b
https://github.com/apache/tomcat/commit/434772930f362145516dd60681134e7f0cf8115b (9.0.107)
https://github.com/apache/tomcat/commit/be8f330f83ceddaf3baeed57522e571572b6b99b
https://github.com/apache/tomcat/commit/be8f330f83ceddaf3baeed57522e571572b6b99b (11.0.9)
https://linux.oracle.com/cve/CVE-2025-53506.html
https://linux.oracle.com/errata/ELSA-2025-14181.html
https://lists.apache.org/thread/p09775q0rd185m6zz98krg0fp45j8kr0
https://lists.debian.org/debian-lts-announce/2025/07/msg00009.html
https://nvd.nist.gov/vuln/detail/CVE-2025-53506
https://www.cve.org/CVERecord?id=CVE-2025-53506
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2025-55752 |
HIGH |
10.1.42 |
11.0.11, 10.1.45, 9.0.109 |
http://www.openwall.com/lists/oss-security/2025/10/27/4
https://access.redhat.com/errata/RHSA-2025:23049
https://bugzilla.redhat.com/2362782
https://bugzilla.redhat.com/2406591
https://bugzilla.redhat.com/show_bug.cgi?id=2362782
https://bugzilla.redhat.com/show_bug.cgi?id=2406591
https://cert-portal.siemens.com/productcert/html/ssa-032379.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31651
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55752
https://errata.almalinux.org/9/ALSA-2025-23049.html
https://errata.rockylinux.org/RLSA-2025:23048
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/130d36d8492ef9e4eb22952c17c92423cb35fd06
https://github.com/apache/tomcat/commit/b5042622b8b78340ae65403c55dcb9c7416924df
https://github.com/apache/tomcat/commit/fec06c610ed7466b401e29cc567a58aee5ed826a
https://linux.oracle.com/cve/CVE-2025-55752.html
https://linux.oracle.com/errata/ELSA-2025-23052.html
https://lists.apache.org/thread/n05kjcwyj1s45ovs8ll1qrrojhfb1tog
https://nvd.nist.gov/vuln/detail/CVE-2025-55752
https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.45
https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.11
https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.109
https://www.vicarius.io/vsociety/posts/cve-2025-55752-detect-apache-tomcat-vulnerability
https://www.vicarius.io/vsociety/posts/cve-2025-55752-mitigate-apache-tomcat-vulnerability
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-24734 |
HIGH |
10.1.42 |
11.0.18, 10.1.52, 9.0.115 |
https://access.redhat.com/errata/RHSA-2026:19054
https://access.redhat.com/security/cve/CVE-2026-24734
https://bugzilla.redhat.com/2440426
https://errata.almalinux.org/10/ALSA-2026-19054.html
https://github.com/apache/tomcat
https://lists.apache.org/thread/292dlmx3fz1888v6v16221kpozq56gml
https://nvd.nist.gov/vuln/detail/CVE-2026-24734
https://www.cve.org/CVERecord?id=CVE-2026-24734
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-24880 |
HIGH |
10.1.42 |
9.0.116, 10.1.52, 11.0.20 |
http://www.openwall.com/lists/oss-security/2026/04/09/20
https://access.redhat.com/security/cve/CVE-2026-24880
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/1b586d6aa8ae65726da5fa8799427b5d4718478a
https://github.com/apache/tomcat/commit/1e71441a15972f56e661b0b549fb9e5d838b83bb
https://github.com/apache/tomcat/commit/2cb06c34f661ca42f7570bbcc21e99806184bcc5
https://github.com/apache/tomcat/commit/6d478dbe18b7c4bb671c30fedf130309b0dab77c
https://github.com/apache/tomcat/commit/f07df938d00f7419b40fa65aa912966d0efac522
https://github.com/apache/tomcat/commit/fde1a8235fb73125217bd41e162aa0a113f33552
https://lists.apache.org/thread/2c682qnlg2tv4o5knlggqbl9yc2gb5sn
https://nvd.nist.gov/vuln/detail/CVE-2026-24880
https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.53
https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.20
https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.116
https://www.cve.org/CVERecord?id=CVE-2026-24880
https://www.herodevs.com/vulnerability-directory/cve-2026-24880
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-34483 |
HIGH |
10.1.42 |
9.0.116, 10.1.54, 11.0.21 |
http://www.openwall.com/lists/oss-security/2026/04/09/26
https://access.redhat.com/security/cve/CVE-2026-34483
https://github.com/apache/tomcat
https://lists.apache.org/thread/j1w7304yonlr8vo1tkb5nfs7od1y228b
https://nvd.nist.gov/vuln/detail/CVE-2026-34483
https://www.cve.org/CVERecord?id=CVE-2026-34483
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-34487 |
HIGH |
10.1.42 |
9.0.117, 10.1.54, 11.0.21 |
http://www.openwall.com/lists/oss-security/2026/04/09/28
https://access.redhat.com/security/cve/CVE-2026-34487
https://github.com/apache/tomcat
https://lists.apache.org/thread/4xpkwolpkrj8v5xzp5nyovtlqp3y850h
https://nvd.nist.gov/vuln/detail/CVE-2026-34487
https://www.cve.org/CVERecord?id=CVE-2026-34487
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-41284 |
HIGH |
10.1.42 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/12
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/17dacd9aa48628da2eba37a9ab743c0b6c71685c
https://github.com/apache/tomcat/commit/a96fffd18487a29c0a30d36f00cb2b2d91f6d42c
https://github.com/apache/tomcat/commit/b3d1c1c239142e806be0b7329d304b94a58913ed
https://lists.apache.org/thread/2nvqjr7ovjmvx2vbhb7s61ycd5msc8qc
https://nvd.nist.gov/vuln/detail/CVE-2026-41284
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-42498 |
HIGH |
10.1.42 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/14
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/169d725788ea6aec217ecac70fe4161c837ba423
https://github.com/apache/tomcat/commit/6cbe274592ef2d11607b5b188e1df649de52f8d5
https://github.com/apache/tomcat/commit/b7b173694d588ddcfa432f079baf763cbbbaa5c4
https://lists.apache.org/thread/n61zwf75jrv09rz90j4jssncm244bwdb
https://nvd.nist.gov/vuln/detail/CVE-2026-42498
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-43513 |
HIGH |
10.1.42 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/9
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/4a90d3fa93988c447cd5bb7482f76ff70d7f15c2
https://github.com/apache/tomcat/commit/6dd75beb55bd42fc5f78e929596b25018cd17717
https://github.com/apache/tomcat/commit/83f3e51df7b87f5f6e626951c575ded1a512e8ef
https://lists.apache.org/thread/ytjcgldshj73lcnd1sh95od5hrghwogp
https://nvd.nist.gov/vuln/detail/CVE-2026-43513
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2026-5598 |
HIGH |
1.78.1 |
1.84 |
https://access.redhat.com/security/cve/CVE-2026-5598
https://github.com/bcgit/bc-java
https://github.com/bcgit/bc-java/commit/8692e6b2b191fc4aafa32545c7a78bdb9bf110c5
https://github.com/bcgit/bc-java/commit/94abbd56413dfdac651fd878bc60253871ef5e87
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905598
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905998
https://github.com/bcgit/bc-java/wiki/CVE-2026-5598
https://nvd.nist.gov/vuln/detail/CVE-2026-5598
https://www.cve.org/CVERecord?id=CVE-2026-5598
|
| org.springframework.boot:spring-boot |
CVE-2026-40973 |
HIGH |
3.4.7 |
4.0.6, 3.5.14 |
https://access.redhat.com/security/cve/CVE-2026-40973
https://github.com/spring-projects/spring-boot
https://nvd.nist.gov/vuln/detail/CVE-2026-40973
https://spring.io/security/cve-2026-40973
https://www.cve.org/CVERecord?id=CVE-2026-40973
|
| org.springframework.security:spring-security-web |
CVE-2026-22732 |
CRITICAL |
6.4.12 |
6.5.9, 7.0.4 |
https://access.redhat.com/security/cve/CVE-2026-22732
https://github.com/spring-projects/spring-security
https://nvd.nist.gov/vuln/detail/CVE-2026-22732
https://spring.io/security/cve-2026-22732
https://www.cve.org/CVERecord?id=CVE-2026-22732
|
| No Misconfigurations found |
|---|