org.apache.tomcat:tomcat-coyote vulnerabilities

Tomcat Connectors and HTTP parser

Latest version: 9.0.24

Licenses detected

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the org.apache.tomcat:tomcat-coyote package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • H
Denial of Service (DoS)
[8.5.0, 8.5.40),[9.0.0.M1, 9.0.20) Not available 27 Jun, 2019
  • H
Denial of Service (DoS)
[8.5.0, 8.5.38),[9.0.0.M1, 9.0.16) Not available 04 Apr, 2019
  • H
Information Exposure
[8.5.7, 8.5.11),[9.0.0.M1, 9.0.0.M17) Not available 22 Feb, 2018
  • H
Denial of Service (DoS)
[7.0.0,7.0.59] Not available 21 May, 2017
  • H
Denial of Service (DoS)
[8.5.0,8.5.13), [9-alpha,9.0.0.M19) Not available 21 May, 2017
  • H
Information Disclosure
[7.0.0,7.0.77), [8,8.0.43), [8.5.0,8.5.13), [9-alpha,9.0.0.M19) Not available 21 May, 2017
  • H
Information Disclosure
[8.5.0,8.5.13), [9-alpha,9.0.0.M19) Not available 21 May, 2017
  • H
Denial of Service (DoS)
[7,7.0.51), [8,8.0.2) Not available 25 Dec, 2016
  • H
Denial of Service (DoS)
[8.5.0,8.5.8),[9.0.0M1,9.0.0M13) Not available 23 Nov, 2016
  • H
Information Exposure
[7.0.0,7.0.73),[8,8.0.39),[8.5.0,8.5.8),[9-alpha,9.0.0.M13) Not available 23 Nov, 2016
  • M
Denial of Service (DoS)
[7.0.0,7.0.6] Not available 10 Jun, 2015
  • H
Access Restriction Bypass
[7.0.0,7.0.20] Not available 10 Jun, 2015
  • M
Information Exposure
[7.0.0,7.0.22) Not available 10 Jun, 2015
  • M
Improper Input Validation
[7.0.0,7.0.19) Not available 19 May, 2015
  • M
Improper Input Validation
[7.0.0,7.0.47),[8.0.0-RC1,8.0.0-RC3) Not available 03 Mar, 2015
  • M
HTTP Request Smuggling
[7.0.0,7.0.53), [8,8.0.4) Not available 03 Mar, 2015
  • M
HTTP Request Smuggling
[7.0.0,7.0.55),[8,8.0.9) Not available 16 Feb, 2015
  • M
Improper Input Validation
[7.0.0,7.0.12) Not available 08 Sep, 2014
  • M
Denial of Service (DoS)
[7.0.0,7.0.53),[8,8.0.4) Not available 08 Sep, 2014
  • M
Improper Input Validation
[8.0,8.0.4) Not available 08 Sep, 2014
  • M
Improper Input Validation
[7.0.0,7.0.28) Not available 17 Jun, 2014
  • M
Improper Input Validation
[7.0.0,7.0.30) Not available 17 Jun, 2014
  • L
Denial of Service (DoS)
[7.0.0,7.0.28) Not available 17 Jun, 2014
  • M
Improper Input Validation
[7.0.0,7.0.50),[8.0.0-RC1,8.0.0-RC10) Not available 08 Jun, 2014
  • M
Information Exposure
[5.5.0,5.5.30),[6.0.0,6.0.28),[7.0.0,7.0.2) Not available 10 Jan, 2014