搜索结果
关于「tomcat」的漏洞数据
| AVD编号 | 漏洞名称 | 漏洞类型 | 披露时间 | 漏洞状态 |
|---|---|---|---|---|
| AVD-2026-43515 | Apache Tomcat:未正确应用安全约束 (CVE-2026-43515) | 2026-05-13 | ||
| AVD-2026-43514 | Apache Tomcat:非恒定时间比较 AJP 秘密 (CVE-2026-43514) | 2026-05-13 | ||
| AVD-2026-43513 | Apache Tomcat:LockOutRealm 将用户名视为区分大小写 (CVE-2026-43513) | 2026-05-13 | ||
| AVD-2026-43512 | Apache Tomcat:摘要式身份验证器将对任何未知用户进行身份验证 (CVE-2026-43512) | 2026-05-13 | ||
| AVD-2026-42498 | Apache Tomcat:WebSocket 身份验证标头暴露 (CVE-2026-42498) | 2026-05-13 | ||
| AVD-2026-41293 | Apache Tomcat:HTTP/2 请求标头未验证 (CVE-2026-41293) | 2026-05-13 | ||
| AVD-2026-41284 | Apache Tomcat:WebDAV LOCK 和 PROPFIND 处理中的无限读取 (CVE-2026-41284) | 2026-05-13 | ||
| AVD-2026-3299 | WP YouTube Lyte 存储型 XSS 漏洞(CVE-2026-3299) | 2026-04-16 | ||
| AVD-2026-34500 | Tomcat CLIENT_CERT 认证绕过漏洞(CVE-2026-34500) | 2026-04-10 | ||
| AVD-2026-34487 | Tomcat集群组件敏感信息泄露漏洞(CVE-2026-34487) | 2026-04-10 | ||
| AVD-2026-34486 | Apache Tomcat 集群加密拦截器绕过反序列化代码执行漏洞(CVE-2026-34486) | 2026-04-10 | ||
| AVD-2026-34483 | Tomcat日志输出编码漏洞(CVE-2026-34483) | 2026-04-10 | ||
| AVD-2026-32990 | Apache Tomcat 输入验证不当漏洞(CVE-2026-32990) | 2026-04-10 | ||
| AVD-2026-29146 | Tomcat EncryptInterceptor Padding Oracle漏洞(CVE-2026-29146) | 2026-04-10 | ||
| AVD-2026-29145 | Tomcat CLIENT_CERT 身份认证绕过漏洞(CVE-2026-29145) | 2026-04-10 | ||
| AVD-2026-29129 | Apache Tomcat 安全漏洞(CVE-2026-29129) | 2026-04-10 | ||
| AVD-2026-25854 | Apache Tomcat任意URL跳转漏洞(CVE-2026-25854) | 2026-04-10 | ||
| AVD-2026-24880 | Tomcat HTTP请求走私漏洞(CVE-2026-24880) | 2026-04-10 | ||
| AVD-2026-24734 | Tomcat Native/Tomcat OCSP 证书吊销检查绕过漏洞(CVE-2026-24734) | 2026-02-18 | ||
| AVD-2026-24733 | Apache Tomcat 安全约束绕过漏洞(CVE-2026-24733) | 2026-02-18 | ||
| AVD-2025-66614 | Tomcat SNI与Host头不一致导致证书鉴权绕过(CVE-2025-66614) | 2026-02-18 | ||
| AVD-2025-61795 | Apache Tomcat:延迟清理分段上传临时文件可能会导致 DoS (CVE-2025-61795) | 2025-10-28 | ||
| AVD-2025-55754 | Apache Tomcat:通过日志消息中的转义序列进行控制台操作 (CVE-2025-55754) | 2025-10-28 | ||
| AVD-2025-55752 | Apache Tomcat RewriteValve 目录穿越漏洞 (CVE-2025-55752) | 2025-10-28 | ||
| AVD-2025-5350 | 多个 WSO2 产品已弃用的试用功能中的 SSRF 和反射型 XSS 漏洞 (CVE-2025-5350) | 2025-10-24 | ||
| AVD-2025-55668 | Apache Tomcat:通过重写阀进行固定(CVE-2025-55668) | 2025-08-13 | ||
| AVD-2025-48989 | Apache Tomcat:H2 DOS-使您重置(CVE-2025-48989) | 2025-08-13 | ||
| AVD-2025-53506 | Apache Tomcat:连接开始时通过过多的H2流进行DOS(CVE-2025-53506) | 2025-07-11 | ||
| AVD-2025-52520 | Apache Tomcat:多部分文件上传中的整数溢出(CVE-2025-52520) | 2025-07-11 | ||
| AVD-2025-52434 | Apache Tomcat:APR/本机连接器崩溃导致DOS(CVE-2025-52434) | 2025-07-11 |