Descrição
Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions.
Below is a complete list of vulnerabilities:
- Improper Encoding or Escaping of Output vulnerability in the JsonAccessLogValve component of Apache Tomcat can be exploited to bypass security restrictions.
- Insertion of Sensitive Information into Log File vulnerability in the cloud membership for clustering component of Apache Tomcat can be exploited to obtain sensitive information.
- Security vulnerability can be exploited to bypass security restrictions.
- Missing Encryption of Sensitive Data vulnerability in Apache Tomcat can be exploited to obtain sensitive information.
Comunicados originais
Exploração
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Lista de CVE
- CVE-2026-34483 critical
- CVE-2026-34486 critical
- CVE-2026-34487 critical
- CVE-2026-34500 high
Saiba mais
Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com
Encontrou uma imprecisão na descrição desta vulnerabilidade? Avise-nos!