Search for packages
Package details: pkg:maven/org.apache.tomcat/tomcat-util@8.5.50
purl pkg:maven/org.apache.tomcat/tomcat-util@8.5.50
Next non-vulnerable version 8.5.96
Latest non-vulnerable version 11.0.1
Risk 10.0
Vulnerabilities affecting this package (5)
Vulnerability Summary Fixed by
VCID-259r-tjud-aaad
Aliases:
CVE-2020-1935
GHSA-qxf4-chvg-4r8r
Potential HTTP request smuggling in Apache Tomcat
8.5.51
Affected by 4 other vulnerabilities.
9.0.31
Affected by 4 other vulnerabilities.
VCID-a1en-zn2z-aaab
Aliases:
CVE-2021-43980
GHSA-jx7c-7mj5-9438
Apache Tomcat Race Condition vulnerability
8.5.78
Affected by 2 other vulnerabilities.
9.0.62
Affected by 3 other vulnerabilities.
10.0.20
Affected by 0 other vulnerabilities.
10.1.1
Affected by 2 other vulnerabilities.
VCID-e318-2aad-aaag
Aliases:
CVE-2023-41080
GHSA-q3mw-pvr8-9ggc
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.0.12, from 9.0.0-M1 through 9.0.79 and from 8.5.0 through 8.5.92. The vulnerability is limited to the ROOT (default) web application.
8.5.93
Affected by 1 other vulnerability.
9.0.80
Affected by 1 other vulnerability.
10.1.13
Affected by 1 other vulnerability.
11.0.1
Affected by 0 other vulnerabilities.
VCID-pcvp-wv2z-aaas
Aliases:
CVE-2023-46589
GHSA-fccv-jmmp-qg76
Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.1.15, from 9.0.0-M1 through 9.0.82 and from 8.5.0 through 8.5.95 did not correctly parse HTTP trailer headers. A trailer header that exceeded the header size limit could cause Tomcat to treat a single request as multiple requests leading to the possibility of request smuggling when behind a reverse proxy. Users are recommended to upgrade to version 11.0.0-M11 onwards, 10.1.16 onwards, 9.0.83 onwards or 8.5.96 onwards, which fix the issue.
8.5.96
Affected by 0 other vulnerabilities.
9.0.83
Affected by 0 other vulnerabilities.
10.1.16
Affected by 0 other vulnerabilities.
11.0.1
Affected by 0 other vulnerabilities.
VCID-w4d3-t13k-aaab
Aliases:
CVE-2021-24122
GHSA-2rvv-w9r2-rg7m
Information Disclosure in Apache Tomcat
8.5.60
Affected by 3 other vulnerabilities.
9.0.40
Affected by 4 other vulnerabilities.
10.0.2
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T16:48:40.632041+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 36.1.3
2025-06-20T16:40:56.932696+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag None 36.1.3
2025-06-20T16:40:55.796047+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 36.1.3
2025-06-20T16:07:48.747462+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab None 36.1.3
2025-06-20T16:07:44.301612+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 36.1.3
2025-06-20T14:56:01.382843+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 36.1.3
2025-06-20T14:56:01.028774+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab None 36.1.3
2025-06-20T14:34:57.439715+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 36.1.3
2025-06-20T14:34:56.742540+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad None 36.1.3
2025-06-03T23:26:15.786803+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 36.1.0
2025-06-03T23:19:34.271606+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag None 36.1.0
2025-06-03T23:19:33.313033+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 36.1.0
2025-06-03T22:47:52.903543+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab None 36.1.0
2025-06-03T22:47:48.803800+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 36.1.0
2025-06-03T21:39:32.280544+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 36.1.0
2025-06-03T21:39:31.955931+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab None 36.1.0
2025-06-03T21:18:45.621530+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 36.1.0
2025-06-03T21:18:44.778260+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad None 36.1.0
2025-06-02T23:23:50.651808+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 36.1.2
2025-06-02T23:16:39.200761+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag None 36.1.2
2025-06-02T23:16:38.063587+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 36.1.2
2025-06-02T22:37:16.949274+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab None 36.1.2
2025-06-02T22:37:11.926942+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 36.1.2
2025-06-02T21:22:28.942564+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 36.1.2
2025-06-02T21:22:28.561410+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab None 36.1.2
2025-06-02T20:59:59.634294+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 36.1.2
2025-06-02T20:59:58.715655+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad None 36.1.2
2025-04-03T21:46:42.240117+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 36.0.0
2025-04-03T21:31:14.645424+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag None 36.0.0
2025-04-03T21:31:11.706150+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 36.0.0
2025-04-03T20:25:35.902578+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab None 36.0.0
2025-04-03T20:25:24.131541+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 36.0.0
2025-04-03T18:07:57.926259+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 36.0.0
2025-04-03T18:07:56.964876+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab None 36.0.0
2025-04-03T17:31:50.359300+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 36.0.0
2025-04-03T17:31:48.482025+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad None 36.0.0
2025-02-18T01:05:28.291239+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 35.1.0
2025-02-18T01:04:25.527903+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 35.1.0
2025-02-18T01:04:20.967817+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag None 35.1.0
2025-02-18T00:30:25.690152+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 35.1.0
2025-02-18T00:30:22.592506+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab None 35.1.0
2025-02-18T00:06:59.011074+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab None 35.1.0
2025-02-18T00:06:49.047884+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 35.1.0
2025-02-17T23:37:26.668235+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad None 35.1.0
2025-02-17T23:37:21.933182+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 35.1.0
2024-11-20T23:30:41.409950+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 35.0.0
2024-11-20T23:30:14.952117+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 35.0.0
2024-11-20T23:13:43.428413+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 35.0.0
2024-11-20T23:00:58.311095+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 35.0.0
2024-11-20T22:39:19.011852+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 35.0.0
2024-11-18T23:19:33.649077+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 34.3.2
2024-11-18T23:19:00.991003+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 34.3.2
2024-11-18T23:01:20.500090+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 34.3.2
2024-11-18T22:47:33.428711+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 34.3.2
2024-11-18T22:30:32.014112+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 34.3.2
2024-10-08T00:16:57.550016+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 34.0.2
2024-10-08T00:16:29.769810+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 34.0.2
2024-10-08T00:00:22.702709+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 34.0.2
2024-10-07T23:47:51.468211+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 34.0.2
2024-10-07T23:31:20.071001+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 34.0.2
2024-09-23T00:30:58.785371+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 34.0.1
2024-09-23T00:30:33.524495+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 34.0.1
2024-09-23T00:14:14.606683+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 34.0.1
2024-09-23T00:02:00.240861+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 34.0.1
2024-09-17T22:36:28.201761+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 34.0.1
2024-04-24T02:41:51.526964+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 34.0.0rc4
2024-04-24T02:41:07.914005+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 34.0.0rc4
2024-04-24T02:41:03.279274+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag None 34.0.0rc4
2024-04-24T02:19:07.397947+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 34.0.0rc4
2024-04-24T02:19:05.618047+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab None 34.0.0rc4
2024-04-24T02:06:13.314467+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab None 34.0.0rc4
2024-04-24T02:06:06.531136+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 34.0.0rc4
2024-04-24T01:47:58.033894+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad None 34.0.0rc4
2024-04-24T01:47:55.595889+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 34.0.0rc4
2024-01-10T05:17:10.146354+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 34.0.0rc2
2024-01-10T05:16:26.570016+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 34.0.0rc2
2024-01-10T05:16:21.911269+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag None 34.0.0rc2
2024-01-10T04:53:39.663212+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 34.0.0rc2
2024-01-10T04:53:37.936753+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab None 34.0.0rc2
2024-01-10T04:40:10.729031+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab None 34.0.0rc2
2024-01-10T04:40:04.018071+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 34.0.0rc2
2024-01-10T04:19:07.905440+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad None 34.0.0rc2
2024-01-10T04:19:05.479107+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 34.0.0rc2
2024-01-03T22:05:00.396097+00:00 GitLab Importer Affected by VCID-pcvp-wv2z-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-46589.yml 34.0.0rc1
2024-01-03T22:04:16.481053+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2023-41080.yml 34.0.0rc1
2024-01-03T22:04:11.811315+00:00 GitLab Importer Affected by VCID-e318-2aad-aaag None 34.0.0rc1
2024-01-03T21:41:10.238114+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-43980.yml 34.0.0rc1
2024-01-03T21:41:08.508921+00:00 GitLab Importer Affected by VCID-a1en-zn2z-aaab None 34.0.0rc1
2024-01-03T21:27:08.526190+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab None 34.0.0rc1
2024-01-03T21:27:01.798468+00:00 GitLab Importer Affected by VCID-w4d3-t13k-aaab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2021-24122.yml 34.0.0rc1
2024-01-03T21:03:19.247003+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad None 34.0.0rc1
2024-01-03T17:59:33.499290+00:00 GitLab Importer Affected by VCID-259r-tjud-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-util/CVE-2020-1935.yml 34.0.0rc1