Multiple vulnerabilities in Apache Tomcat

Description

Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Denial of service vulnerability can be exploited remotely to cause denial of service.
2. Security vulnerability in Apache Tomcat can be exploited to bypass security restrictions.
3. A remote code execution vulnerability can be exploited remotely to execute arbitrary code.
4. Security vulnerability can be exploited to bypass security restrictions.

Original advisories

• Apache Tomcat 9.x vulnerabilities

Related products

• Apache-Tomcat

CVE list

• CVE-2025-48976
  critical
• CVE-2025-49125
  critical
• CVE-2025-48988
  critical
• CVE-2025-49124
  critical
• CVE-2025-55668
  high

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com