jws5-tomcat vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the jws5-tomcat package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
H Resource Exhaustion	*
M Authentication Bypass	<0:9.0.87-12.redhat_00011.1.el9jws
M Integer Overflow or Wraparound	<0:9.0.87-12.redhat_00011.1.el9jws
M Race Condition	<0:9.0.87-12.redhat_00011.1.el9jws
M Resource Exhaustion	<0:9.0.87-12.redhat_00011.1.el9jws
M Allocation of Resources Without Limits or Throttling	<0:9.0.87-12.redhat_00011.1.el9jws
M Allocation of Resources Without Limits or Throttling	<0:9.0.87-12.redhat_00011.1.el9jws
M Improper Handling of Case Sensitivity	*
L Improper Neutralization	*
H Improper Input Validation	<0:9.0.87-11.redhat_00010.1.el9jws
M Path Equivalence	<0:9.0.87-8.redhat_00008.1.el9jws
H Time-of-check Time-of-use (TOCTOU)	<0:9.0.87-11.redhat_00010.1.el9jws
M Time-of-check Time-of-use (TOCTOU)	<0:9.0.87-6.redhat_00006.1.el9jws
H Resource Exhaustion	<0:9.0.87-5.redhat_00005.1.el9jws
H Resource Exhaustion	<0:9.0.87-5.redhat_00005.1.el9jws
H Missing Required Cryptographic Step	<0:9.0.62-41.redhat_00020.1.el9jws
H Improper Input Validation	<0:9.0.62-41.redhat_00020.1.el9jws
H Incomplete Cleanup	<0:9.0.87-3.redhat_00003.1.el9jws
M Excessive Iteration	<0:9.0.62-19.redhat_00017.1.el9jws
M Resource Exhaustion	<0:9.0.62-19.redhat_00017.1.el9jws
M Resource Exhaustion	<0:9.0.62-19.redhat_00017.1.el9jws
M Improper Certificate Validation	<0:9.0.62-19.redhat_00017.1.el9jws
M Improper Certificate Validation	<0:9.0.62-19.redhat_00017.1.el9jws
M Resource Exhaustion	<0:9.0.62-19.redhat_00017.1.el9jws
H HTTP Request Smuggling	<0:9.0.62-41.redhat_00020.1.el9jws
M Incomplete Cleanup	<0:9.0.62-18.redhat_00016.1.el9jws
M Improper Input Validation	<0:9.0.62-18.redhat_00016.1.el9jws
H Resource Exhaustion	<0:9.0.62-16.redhat_00014.1.el9jws
M Open Redirect	<0:9.0.62-19.redhat_00017.1.el9jws
M Off-by-one Error	<0:9.0.62-15.redhat_00013.1.el9jws
M Information Exposure	<0:9.0.62-15.redhat_00013.1.el9jws
M Allocation of Resources Without Limits or Throttling	<0:9.0.62-15.redhat_00013.1.el9jws
M Integer Overflow or Wraparound	<0:9.0.62-15.redhat_00013.1.el9jws
L Arbitrary Code Injection	<0:9.0.62-13.redhat_00011.1.el9jws
L HTTP Request Smuggling	<0:9.0.62-13.redhat_00011.1.el9jws
M Race Condition	<0:9.0.62-9.redhat_00005.1.el9jws
L Incomplete Documentation of Program Execution	*
M Time-of-check Time-of-use (TOCTOU)	<0:9.0.62-9.redhat_00005.1.el9jws
M HTTP Request Smuggling	*
L Improper Authentication	*
M Information Exposure	*
H Improper Input Validation	*
H Missing Release of Resource after Effective Lifetime	*
H Resource Exhaustion	*
L HTTP Request Smuggling	*
H Race Condition	*
L Improper Input Validation	*
M Improper Access Control	*
L Deserialization of Untrusted Data	*
M Information Exposure	*
H Deserialization of Untrusted Data	*
M Information Exposure	*
H Resource Exhaustion	*
M Information Exposure	*
H Resource Exhaustion	*
M Resource Exhaustion	*
L Session Fixation	*
M Improper Access Control	*
M Resource Exhaustion	*
L Cross-site Scripting (XSS)	*
H Resource Exhaustion	*

Vulnerability

Vulnerable Version

Resource Exhaustion