pkg:Maven/org.apache.tomcat:tomcat-coyote

All known vulnerabilities

• MEDIUM5.3CVE-2023-44487⚠ KEVnghttp2 - security update
  >= 11.0.0-M1, < 11.0.0-M12
• CRITICAL9.8CVE-2017-5651Expected Behavior Violation in Apache Tomcat
  >= 9.0.0.M1, < 9.0.0.M19
• CRITICAL9.1Apache Tomcat - Client certificate verification bypass
  >= 11.0.0-M1, < 11.0.15
• HIGH7.5Apache Tomcat: Configured cipher preference order not preserved
  >= 9.0.114, < 9.0.116
• HIGH7.5Apache Tomcat has an HTTP Request/Response Smuggling vulnerability
  >= 7.0.0, < 9.0.116
• HIGH7.5Apache Tomcat has an Improper Input Validation vulnerability
  >= 11.0.0-M1, < 11.0.18
• HIGH7.5Apache Tomcat Improper Resource Shutdown or Release vulnerability
  >= 11.0.0-M1, < 11.0.10
• HIGH7.5Apache Tomcat Coyote vulnerable to Denial of Service via excessive HTTP/2 streams
  >= 11.0.0-M1, < 11.0.9
• HIGH7.5Apache Tomcat Denial of Service via invalid HTTP priority header
  >= 9.0.76, < 9.0.104
• HIGH7.5tomcat10 - security update
  >= 11.0.0-M1, < 11.0.0-M21
• HIGH7.5Apache Tomcat Denial of Service due to improper input validation vulnerability for HTTP/2 requests
  >= 11.0.0-M1, < 11.0.0-M17
• HIGH7.5tomcat10 - security update
  >= 8.5.85, < 8.5.88
• HIGH7.5Apache Tomcat vulnerable to information leak
  >= 8.5.88, < 8.5.89
• HIGH7.5tomcat9 - security update
  >= 10.1.0-M1, < 10.1.5
• HIGH7.5tomcat9 - security update
  >= 9.0.0-M1, < 9.0.68
• HIGH7.5tomcat8 - security update
  >= 10.0.0-M1, < 10.0.0-M10
• HIGH7.5tomcat8 - security update
  >= 10.0.0-M1, < 10.0.0-M6
• HIGH7.5tomcat9 - security update
  >= 10.0.0-M1, < 10.0.2
• HIGH7.5Apache Tomcat Denial of Service vulnerability
  >= 9.0.0, < 9.0.16
• HIGH7.1tomcat8 - security update
  >= 9.0.0.M1, < 9.0.0.M12
• MEDIUM6.5Apache Tomcat Request and/or response mix-up
  >= 9.0.92, < 9.0.96
• MEDIUM5.9Apache Tomcat Incomplete Cleanup vulnerability
  >= 9.0.70, < 9.0.81
• MEDIUM5.3Apache Tomcat has an Improper Input Validation vulnerability
  >= 9.0.113, < 9.0.116
• MEDIUM5.3tomcat9 - security update
  >= 9.0.0-M11, < 9.0.44
• MEDIUM5.3Apache Tomcat Improper Input Validation vulnerability
  >= 11.0.0-M1, < 11.0.0-M12
• MEDIUM5.3Apache Tomcat Incomplete Cleanup vulnerability
  >= 11.0.0-M1, < 11.0.0-M12
• MEDIUM4.3tomcat9 - security update
  >= 10.0.0-M1, < 10.0.0-M8
• —Denial of service in Apache Tomcat
  >= 8.0.0-RC1, < 8.0.4
• —Integer Overflow or Wraparound in Apache Tomcat
  from 0, < 6.0.40