jws5-tomcat-native vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the jws5-tomcat-native package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
H Improper Input Validation	<0:1.2.31-17.redhat_17.el9jws
H Missing Required Cryptographic Step	<0:1.2.31-17.redhat_17.el9jws
H HTTP Request Smuggling	<0:1.2.31-17.redhat_17.el9jws
M Open Redirect	<0:1.2.31-16.redhat_16.el9jws
M Excessive Iteration	<0:1.2.31-16.redhat_16.el9jws
M Resource Exhaustion	<0:1.2.31-16.redhat_16.el9jws
M Resource Exhaustion	<0:1.2.31-16.redhat_16.el9jws
M Improper Certificate Validation	<0:1.2.31-16.redhat_16.el9jws
M Improper Certificate Validation	<0:1.2.31-16.redhat_16.el9jws
M Resource Exhaustion	<0:1.2.31-16.redhat_16.el9jws
M Off-by-one Error	<0:1.2.31-15.redhat_15.el9jws
M Information Exposure	<0:1.2.31-15.redhat_15.el9jws
M Allocation of Resources Without Limits or Throttling	<0:1.2.31-15.redhat_15.el9jws
M Integer Overflow or Wraparound	<0:1.2.31-15.redhat_15.el9jws
H Incorrect Type Conversion or Cast	<0:1.2.31-14.redhat_14.el9jws
H Use After Free	<0:1.2.31-14.redhat_14.el9jws
H Double Free	<0:1.2.31-14.redhat_14.el9jws
H Information Exposure	<0:1.2.31-14.redhat_14.el9jws
M Race Condition	<0:1.2.31-10.redhat_10.el9jws
M Arbitrary Command Injection	<0:1.2.31-11.redhat_11.el9jws
M Arbitrary Command Injection	<0:1.2.31-11.redhat_11.el9jws
M Time-of-check Time-of-use (TOCTOU)	<0:1.2.31-10.redhat_10.el9jws