Threats Tagged 'cve-2025-31651'
View all threats tagged with 'cve-2025-31651'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2025-31651'
Click on any threat for detailed analysis and mitigation recommendations
Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.3 release and security updateCVE-2025-31651 0 Red Hat JBoss Web Server 6.1.3 includes important security fixes addressing multiple vulnerabilities in Apache Tomcat components. These include a directory traversal vulnerability via rewrite rules that may allow remote code execution, a denial of service issue, and a bypass of rules in the Rewrite Valve. The update replaces version 6.1.2 and is available for Red Hat Enterprise Linux 8, 9, and 10. The advisory rates the security impact as Important. Users are advised to apply this update after ensuring all prior relevant errata are installed. Join the discussion | GCVE Database | 11/06/2025, 16:32:43 UTC Added: 06/10/2026, 09:09:13 UTC |
Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.3 release and security updateCVE-2025-31651 0 Red Hat JBoss Web Server 6.1.3 includes important security fixes addressing multiple vulnerabilities in Apache Tomcat components. These include a directory traversal vulnerability with potential remote code execution (CVE-2025-55752), a denial of service vulnerability (CVE-2025-61795), and a bypass of rules in the Rewrite Valve (CVE-2025-31651). The update replaces version 6.1.2 and is rated as having an important security impact by Red Hat. Users are advised to back up their installations before applying the update. Join the discussion | GCVE Database | 11/06/2025, 16:24:24 UTC Added: 06/10/2026, 09:09:13 UTC |
Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.6 release and security updateCVE-2025-31651 0 Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library. This release of Red Hat JBoss Web Server 5.8.6 serves as a replacement for Red Hat JBoss Web Server 5.8.5. This release includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes that are linked to in the References section. Security Fix(es): * [Minor Incident] tomcat: http/2 "MadeYouReset" DoS attack through HTTP/2 control frames [jws-5] (CVE-2025-48989) * tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve [jws-5] (CVE-2025-31651) * tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE [jws-5] (CVE-2025-55752) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 12/09/2025, 15:22:27 UTC Added: 06/10/2026, 09:09:13 UTC |
Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.6 release and security updateCVE-2025-31651 0 Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library. This release of Red Hat JBoss Web Server 5.8.6 serves as a replacement for Red Hat JBoss Web Server 5.8.5. This release includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes that are linked to in the References section. Security Fix(es): * [Minor Incident] tomcat: http/2 "MadeYouReset" DoS attack through HTTP/2 control frames [jws-5] (CVE-2025-48989) * tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve [jws-5] (CVE-2025-31651) * tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE [jws-5] (CVE-2025-55752) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 12/09/2025, 15:25:26 UTC Added: 06/10/2026, 09:09:13 UTC |
Red Hat Security Advisory: tomcat security updateCVE-2025-31651 0 Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. Security Fix(es): * tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve (CVE-2025-31651) * tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE (CVE-2025-55752) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 12/10/2025, 17:07:38 UTC Added: 06/10/2026, 09:09:13 UTC |
Red Hat Security Advisory: tomcat security updateCVE-2025-31651 0 Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. Security Fix(es): * tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve (CVE-2025-31651) * tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE (CVE-2025-55752) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 12/10/2025, 14:52:08 UTC Added: 06/10/2026, 09:09:13 UTC |
Red Hat Security Advisory: tomcat security updateCVE-2025-31651 0 Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. Security Fix(es): * tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve (CVE-2025-31651) * tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE (CVE-2025-55752) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 12/10/2025, 14:55:18 UTC Added: 06/10/2026, 09:09:13 UTC |
Red Hat Security Advisory: tomcat security updateCVE-2025-31651 0 Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. Security Fix(es): * tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve (CVE-2025-31651) * tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE (CVE-2025-55752) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 12/10/2025, 15:12:13 UTC Added: 06/10/2026, 09:09:13 UTC |
Red Hat Security Advisory: tomcat security updateCVE-2025-31651 0 Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. Security Fix(es): * tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve (CVE-2025-31651) * tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE (CVE-2025-55752) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 12/10/2025, 17:45:03 UTC Added: 06/10/2026, 09:09:13 UTC |
Red Hat Security Advisory: tomcat security updateCVE-2025-31651 0 Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. Security Fix(es): * tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve (CVE-2025-31651) * tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE (CVE-2025-55752) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 12/10/2025, 15:15:23 UTC Added: 06/10/2026, 09:09:13 UTC |
Showing 1 to 10 of 19 results