tomcat-el-3_0-api

Direct Vulnerabilities

Known vulnerabilities in the tomcat-el-3_0-api package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
M CVE-2026-34500	<9.0.117-150200.105.1
M Information Exposure Through Log Files	<9.0.117-150200.105.1
H Missing Encryption of Sensitive Data	<9.0.117-150200.105.1
H Improper Input Validation	<9.0.117-150200.105.1
M Improper Encoding or Escaping of Output	<9.0.117-150200.105.1
H CVE-2026-29146	<9.0.117-150200.105.1
M CVE-2026-29145	<9.0.117-150200.105.1
M Open Redirect	<9.0.117-150200.105.1
M CVE-2026-29129	<9.0.117-150200.105.1
H Improper Certificate Validation	<9.0.117-150200.105.1
M HTTP Request Smuggling	<9.0.117-150200.105.1
M CVE-2026-24734	<9.0.115-150200.102.1
M CVE-2026-24733	<9.0.115-150200.102.1
H Improper Certificate Validation	<9.0.115-150200.102.1
M Improper Resource Shutdown or Release	<9.0.111-150200.96.1
M Improper Neutralization	<9.0.111-150200.96.1
H Directory Traversal	<9.0.111-150200.96.1
M Resource Exhaustion	<9.0.108-150200.91.1
M Integer Overflow or Wraparound	<9.0.108-150200.91.1
M Race Condition	<9.0.108-150200.91.1
H Authentication Bypass	<9.0.108-150200.91.1
H Improper Resource Shutdown or Release	<9.0.108-150200.91.1
M Authentication Bypass	<9.0.106-150200.86.1
H Allocation of Resources Without Limits or Throttling	<9.0.106-150200.86.1
M Improper Handling of Case Sensitivity	<9.0.106-150200.86.1
H Incomplete Cleanup	<9.0.104-150200.81.1
H Improper Encoding or Escaping of Output	<9.0.104-150200.81.1