Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Citrix Gateway Open Redirect And XSS Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-3092) CVE-2016-3092 CWE-20 CWE-20 High Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-6816) CVE-2016-6816 CWE-20 CWE-20 High Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-7675) CVE-2017-7675 CWE-22 CWE-22 High Apache Tomcat Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2016-9774) CVE-2016-9774 CWE-59 CWE-59 High Apache Tomcat Improper Locking Vulnerability (CVE-2019-10072) CVE-2019-10072 CWE-667 CWE-667 High Apache Tomcat Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2019-0232) CVE-2019-0232 CWE-138 CWE-138 High Apache Tomcat Improper Resource Shutdown or Release Vulnerability (CVE-2017-5650) CVE-2017-5650 CWE-404 CWE-404 High Apache Tomcat Improper Resource Shutdown or Release Vulnerability (CVE-2022-25762) CVE-2022-25762 CWE-404 CWE-404 High Apache Tomcat Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2002-2272) CVE-2002-2272 CWE-119 CWE-119 High Apache Tomcat Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-6817) CVE-2016-6817 CWE-119 CWE-119 High Apache Tomcat Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2020-13934) CVE-2020-13934 CWE-119 CWE-119 High Apache Tomcat Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2022-42252) CVE-2022-42252 High Apache Tomcat Incorrect Authorization Vulnerability (CVE-2016-6797) CVE-2016-6797 CWE-863 CWE-863 High Apache Tomcat Incorrect Default Permissions Vulnerability (CVE-2020-8022) CVE-2020-8022 CWE-276 CWE-276 High Apache Tomcat Information Disclosure CVE-2017-7674 CVE-2017-12616 CWE-200 CWE-200 High Apache Tomcat insecure default administrative password CWE-284 CWE-284 High Apache Tomcat Insufficiently Protected Credentials Vulnerability (CVE-2019-12418) CVE-2019-12418 CWE-522 CWE-522 High Apache Tomcat Integer Overflow or Wraparound Vulnerability (CVE-2015-8751) CVE-2015-8751 CWE-190 CWE-190 High Apache Tomcat JK connector security bypass CVE-2007-1860 CWE-200 CWE-200 High Apache Tomcat Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1336) CVE-2018-1336 CWE-835 CWE-835 High Apache Tomcat Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2020-13935) CVE-2020-13935 CWE-835 CWE-835 High Apache Tomcat Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-41079) CVE-2021-41079 CWE-835 CWE-835 High Apache Tomcat Missing Release of Resource after Effective Lifetime Vulnerability (CVE-2021-42340) CVE-2021-42340 CWE-772 CWE-772 High Apache Tomcat Off-by-one Error Vulnerability (CVE-2023-28709) CVE-2023-28709 CWE-193 CWE-193 High Apache Tomcat Other Vulnerability (CVE-2001-1563) CVE-2001-1563 High Apache Tomcat Other Vulnerability (CVE-2002-0682) CVE-2002-0682 High Apache Tomcat Other Vulnerability (CVE-2002-1394) CVE-2002-1394 High Apache Tomcat Other Vulnerability (CVE-2006-7197) CVE-2006-7197 High Apache Tomcat Other Vulnerability (CVE-2015-5346) CVE-2015-5346 High Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-3190) CVE-2011-3190 CWE-264 CWE-264 High Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0050) CVE-2014-0050 CWE-264 CWE-264 High Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0714) CVE-2016-0714 CWE-264 CWE-264 High Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9775) CVE-2016-9775 CWE-264 CWE-264 High Apache Tomcat Remote Code Execution Vulnerability CVE-2017-12615 CWE-94 CWE-94 High Apache Tomcat Resource Management Errors Vulnerability (CVE-2014-0230) CVE-2014-0230 High Apache Tomcat Session Fixation Vulnerability (CVE-2019-17563) CVE-2019-17563 CWE-384 CWE-384 High Apache Tomcat Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2022-23181) CVE-2022-23181 CWE-367 CWE-367 High Apache Tomcat Uncontrolled Resource Consumption Vulnerability (CVE-2019-0199) CVE-2019-0199 CWE-400 CWE-400 High Apache Tomcat Uncontrolled Resource Consumption Vulnerability (CVE-2020-11996) CVE-2020-11996 CWE-400 CWE-400 High Apache Tomcat Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-12615) CVE-2017-12615 CWE-434 CWE-434 High Apache Tomcat Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2017-12617) CVE-2017-12617 CWE-434 CWE-434 High Apache Tomcat version older than 6.0.35 CVE-2011-3190 CVE-2011-3375 CVE-2012-0022 CWE-264 CWE-264 High Apache Tomcat version older than 6.0.36 CVE-2012-2733 CVE-2012-3439 CVE-2012-3546 CVE-2012-4431 CVE-2012-4534 CWE-20 CWE-20 High Apache Tomcat version older than 7.0.21 CVE-2011-3190 CWE-264 CWE-264 High Apache Tomcat version older than 7.0.23 CVE-2012-0022 CWE-189 CWE-189 High Apache Tomcat version older than 7.0.28 CVE-2012-2733 CVE-2012-4534 CWE-20 CWE-20 High Apache Tomcat version older than 7.0.30 CVE-2012-3439 CVE-2012-3544 CVE-2012-3546 CWE-20 CWE-20 High Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9511) CVE-2019-9511 CWE-770 CWE-770 High Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9514) CVE-2019-9514 CWE-770 CWE-770 High Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9515) CVE-2019-9515 CWE-770 CWE-770 High Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9517) CVE-2019-9517 CWE-770 CWE-770 High Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9518) CVE-2019-9518 CWE-770 CWE-770 High Apache Traffic Server CVE-2022-47184 Vulnerability (CVE-2022-47184) CVE-2022-47184 High Apache Traffic Server CVE-2022-47185 Vulnerability (CVE-2022-47185) CVE-2022-47185 High Apache Traffic Server CVE-2023-30631 Vulnerability (CVE-2023-30631) CVE-2023-30631 High Apache Traffic Server CVE-2023-33933 Vulnerability (CVE-2023-33933) CVE-2023-33933 High Apache Traffic Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-11783) CVE-2018-11783 CWE-200 CWE-200 High Apache Traffic Server HTTP Request Smuggling Vulnerability (CVE-2020-17509 ) CVE-2020-17509 High Apache Traffic Server Improper Authentication Vulnerability (CVE-2021-38161) CVE-2021-38161 CWE-287 CWE-287 High Apache Traffic Server Improper Authentication Vulnerability (CVE-2021-44759) CVE-2021-44759 CWE-287 CWE-287 High Apache Traffic Server Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2022-32749) CVE-2022-32749 CWE-754 CWE-754 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2017-5659) CVE-2017-5659 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2017-5660) CVE-2017-5660 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2017-7671) CVE-2017-7671 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2018-1318) CVE-2018-1318 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2018-8022) CVE-2018-8022 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2019-10079) CVE-2019-10079 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-32566) CVE-2021-32566 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-32567) CVE-2021-32567 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37147) CVE-2021-37147 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37148) CVE-2021-37148 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37149) CVE-2021-37149 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37150) CVE-2021-37150 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-41585) CVE-2021-41585 CWE-20 CWE-20 High Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-44040) CVE-2021-44040 CWE-20 CWE-20 High 12345...155 3 / 155
