Red Hat Security Advisory: tomcat9 security update
This advisory addresses multiple security vulnerabilities in Apache Tomcat 9 as packaged for Red Hat Enterprise Linux 10. The issues include a security constraint bypass for CGI scripts (CVE-2025-46701), session fixation via the rewrite valve (CVE-2025-55668), and console manipulation (CVE-2025-55754). These vulnerabilities have been rated with a high security impact by Red Hat Product Security. An update to tomcat9 is available for Red Hat Enterprise Linux 10 to remediate these issues. The advisory provides references for detailed patch application instructions and release notes. No known exploits in the wild have been reported at this time.
AI Analysis
Technical Summary
Apache Tomcat 9, used as the servlet container for Java Servlet and JavaServer Pages technologies, has multiple security vulnerabilities affecting Red Hat Enterprise Linux 10 distributions. The vulnerabilities include a security constraint bypass for CGI scripts (CVE-2025-46701), session fixation via the rewrite valve (CVE-2025-55668), and console manipulation (CVE-2025-55754). These issues are addressed in a security update released by Red Hat (RHSA-2026:18536). The update rebases the tomcat9 package and includes fixes for the identified CVEs. The advisory does not provide CVSS scores but classifies the impact as important/high. The update is available for multiple architectures supported by Red Hat Enterprise Linux 10.
Potential Impact
The vulnerabilities could allow attackers to bypass security constraints on CGI scripts, perform session fixation attacks via the rewrite valve, and manipulate the console, potentially leading to unauthorized access or control within the affected Tomcat environment. Red Hat rates the overall security impact as important, indicating a significant risk if left unpatched. No exploits are currently known to be active in the wild.
Mitigation Recommendations
A security update for tomcat9 is available for Red Hat Enterprise Linux 10 and should be applied to affected systems. Detailed instructions for applying the update are provided in the Red Hat advisory (RHSA-2026:18536) and associated documentation. Since this is an official Red Hat security advisory with an available update, applying the update is the recommended remediation. There is no indication that no action is required or that the issue is already mitigated without patching.
Red Hat Security Advisory: tomcat9 security update
Description
This advisory addresses multiple security vulnerabilities in Apache Tomcat 9 as packaged for Red Hat Enterprise Linux 10. The issues include a security constraint bypass for CGI scripts (CVE-2025-46701), session fixation via the rewrite valve (CVE-2025-55668), and console manipulation (CVE-2025-55754). These vulnerabilities have been rated with a high security impact by Red Hat Product Security. An update to tomcat9 is available for Red Hat Enterprise Linux 10 to remediate these issues. The advisory provides references for detailed patch application instructions and release notes. No known exploits in the wild have been reported at this time.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Apache Tomcat 9, used as the servlet container for Java Servlet and JavaServer Pages technologies, has multiple security vulnerabilities affecting Red Hat Enterprise Linux 10 distributions. The vulnerabilities include a security constraint bypass for CGI scripts (CVE-2025-46701), session fixation via the rewrite valve (CVE-2025-55668), and console manipulation (CVE-2025-55754). These issues are addressed in a security update released by Red Hat (RHSA-2026:18536). The update rebases the tomcat9 package and includes fixes for the identified CVEs. The advisory does not provide CVSS scores but classifies the impact as important/high. The update is available for multiple architectures supported by Red Hat Enterprise Linux 10.
Potential Impact
The vulnerabilities could allow attackers to bypass security constraints on CGI scripts, perform session fixation attacks via the rewrite valve, and manipulate the console, potentially leading to unauthorized access or control within the affected Tomcat environment. Red Hat rates the overall security impact as important, indicating a significant risk if left unpatched. No exploits are currently known to be active in the wild.
Mitigation Recommendations
A security update for tomcat9 is available for Red Hat Enterprise Linux 10 and should be applied to affected systems. Detailed instructions for applying the update are provided in the Red Hat advisory (RHSA-2026:18536) and associated documentation. Since this is an official Red Hat security advisory with an available update, applying the update is the recommended remediation. There is no indication that no action is required or that the issue is already mitigated without patching.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:18536
- Cve Count
- 3
- Additional Cves
- ["CVE-2025-55668","CVE-2025-55754"]
- Cvss Version
- null
Threat ID: 6a18be67e29bf47b50386ea8
Added to database: 5/28/2026, 10:15:03 PM
Last enriched: 5/28/2026, 10:33:54 PM
Last updated: 5/29/2026, 5:37:42 PM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.