jws5-tomcat-native vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the jws5-tomcat-native package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
H Improper Input Validation	<0:1.2.31-17.redhat_17.el9jws
H Missing Required Cryptographic Step	<0:1.2.31-17.redhat_17.el9jws
H HTTP Request Smuggling	<0:1.2.31-17.redhat_17.el9jws
M Open Redirect	<0:1.2.31-16.redhat_16.el9jws
M Excessive Iteration	<0:1.2.31-16.redhat_16.el9jws
M Resource Exhaustion	<0:1.2.31-16.redhat_16.el9jws
M Resource Exhaustion	<0:1.2.31-16.redhat_16.el9jws
M Improper Certificate Validation	<0:1.2.31-16.redhat_16.el9jws
M Improper Certificate Validation	<0:1.2.31-16.redhat_16.el9jws
M Resource Exhaustion	<0:1.2.31-16.redhat_16.el9jws
M Off-by-one Error	<0:1.2.31-15.redhat_15.el9jws
M Information Exposure	<0:1.2.31-15.redhat_15.el9jws
M Allocation of Resources Without Limits or Throttling	<0:1.2.31-15.redhat_15.el9jws
M Integer Overflow or Wraparound	<0:1.2.31-15.redhat_15.el9jws
H Incorrect Type Conversion or Cast	<0:1.2.31-14.redhat_14.el9jws
H Use After Free	<0:1.2.31-14.redhat_14.el9jws
H Double Free	<0:1.2.31-14.redhat_14.el9jws
H Information Exposure	<0:1.2.31-14.redhat_14.el9jws
M Race Condition	<0:1.2.31-10.redhat_10.el9jws
M Arbitrary Command Injection	<0:1.2.31-11.redhat_11.el9jws
M Arbitrary Command Injection	<0:1.2.31-11.redhat_11.el9jws
M Time-of-check Time-of-use (TOCTOU)	<0:1.2.31-10.redhat_10.el9jws