15 KiB
15 KiB
Apache Tomcat
LAB ONLY|AUTHORIZED TARGETS ONLY| 自动生成索引
- 系统 ID:
apache-tomcat - 分类:
servers - 覆盖策略:
history-full - 总案例数:
136 - 近 30 天新增/更新:
0 - 重点 Markdown 案例数:
0 - 已实证(真实版本):
0 - 已实证(synthetic):
0 - 阻塞数:
0 - 待人工/缺浏览器证据:
136 - 最近渲染时间:
2026-04-02T09:18:51+00:00
目标约束
- 适用目标类型:
lab-local, lab-public, authorized-third-party - 是否允许公网验证:
yes, but ownership or authorization is required - 授权前提: 资产归属可证明,或已取得书面/明确授权。
- 最小化验证方式: 最小化验证、只读探测、可审计回显、受控注入。
- 禁止场景: 无归属证明或无明确授权的公网目标;知名公共网站或与测试无关的第三方资产;会造成持久破坏、数据越权下载或不可回滚影响的动作
来源
officialApache Tomcat Security (mode=server)officialCISA KEV Tomcat (mode=server)officialNVD Tomcat (keyword=Apache Tomcat; mode=server)
案例列表
| 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
|---|---|---|---|---|---|---|---|
| Apache Tomcat Path Equivalence Vulnerability | critical |
triage |
triage-manual |
synthetic |
official |
2025-04-22 |
- |
| Apache Tomcat Remote Code Execution Vulnerability | critical |
triage |
triage-manual |
synthetic |
official |
2023-06-02 |
- |
| Apache Tomcat on Windows Remote Code Execution Vulnerability | critical |
triage |
triage-manual |
synthetic |
official |
2022-04-15 |
- |
| Apache Tomcat Remote Code Execution Vulnerability | critical |
triage |
triage-manual |
synthetic |
official |
2022-04-15 |
- |
| Apache Tomcat Improper Privilege Management Vulnerability | critical |
triage |
triage-manual |
synthetic |
official |
2022-03-17 |
- |
| Cisco HyperFlex HX Data Platform Command Injection Vulnerability | critical |
triage |
triage-manual |
synthetic |
official |
2021-11-17 |
- |
| CVE-2008-1232 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2008-1947 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-5333 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-6286 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2008-0002 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2008-0457 | high |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2008-0128 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-5342 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-5461 | low |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-4724 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-3382 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-3385 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-3386 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-3384 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-3383 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-2449 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-2450 | low |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-1860 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2006-7195 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2006-7196 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-1358 | low |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-1858 | low |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2006-7197 | high |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-0450 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-1491 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2007-0774 | high |
triage |
triage-manual |
synthetic |
official |
2025-04-09T00:30:58.490 |
- |
| CVE-2006-3835 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2005-1753 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2005-1754 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2005-4703 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2005-4836 | high |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2005-3510 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2005-3164 | low |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2005-0808 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-1567 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-1394 | high |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-1895 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-2006 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-2007 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-2008 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-2009 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-2272 | high |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-0935 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-0493 | high |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2002-0682 | high |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2000-1210 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2001-0829 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2001-0590 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2000-0759 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| CVE-2000-0760 | medium |
triage |
triage-manual |
synthetic |
official |
2025-04-03T01:03:51.193 |
- |
| 5053fa82 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-48989 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-48988 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Taglibs | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 238d2aa5 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat 9 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| af6e9181 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 2aa62612 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat 9.0 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2026-24734 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Presentations | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2026-24733 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 130d36d8 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat 10.1 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat Native | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat Native 2 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| building.html | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 667ddd76 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 8621e4c6 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat Connectors | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-52520 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Which version? | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tools | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Mailing Lists | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 73c04a10 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Who We Are | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Bug Database | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Maven Plugin | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Legal | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-61795 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-49125 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat Connectors | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-48976 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Security Considerations | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 972f9a5e | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 138d7f5c | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat Native 1.3 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| security impact rating | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Contact | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Home | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-55754 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Blog | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-31651 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 066bf6b6 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-66614 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Migration Guide | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat 11.0 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| BUILDING.txt | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-55752 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Heritage | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-55668 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Overview | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat 10 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat 11 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Security Reports | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| end of life | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
unknown |
triage |
triage-manual |
synthetic |
official |
`` | - | |
| Fixed in Apache Tomcat 10.1.52 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Wiki | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| YouTube | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-31650 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| cdde8e65 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-46701 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Buildbot | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Source code | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 2c680011 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Taglibs | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Resources | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 7617b9c2 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Upgrading | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Find help | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| e0e07812 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| fc42bbcc | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-49124 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| FAQ | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| 711b465c | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Archives | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Tomcat Migration Tool for Jakarta EE | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| Swag | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |
| CVE-2025-53506 | unknown |
triage |
triage-manual |
synthetic |
official |
`` | - |