GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
6 advisories
Apache Tomcat Missing Encryption of Sensitive Data vulnerability
High
CVE-2026-34486
was published
for
org.apache.tomcat:tomcat
(Maven)
Apr 9, 2026
Apache Tomcat: Padding Oracle vulnerability in EncryptInterceptor
High
CVE-2026-29146
was published
for
org.apache.tomcat:tomcat
(Maven)
Apr 9, 2026
Apache Tomcat has an HTTP Request/Response Smuggling vulnerability
High
CVE-2026-24880
was published
for
org.apache.tomcat:tomcat
(Maven)
Apr 9, 2026
Apache Tomcat has an Improper Input Validation vulnerability
Moderate
CVE-2026-32990
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
Apr 9, 2026
Apache Tomcat Vulnerable to Improper Resource Shutdown or Release
Low
CVE-2025-61795
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
Oct 27, 2025
Apache Tomcat Vulnerable to Relative Path Traversal
High
CVE-2025-55752
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
Oct 27, 2025
ProTip!
Advisories are also available from the
GraphQL API