Threats Tagged 'ubuntu-pro-24-04-lts'
View all threats tagged with 'ubuntu-pro-24-04-lts'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'ubuntu-pro-24-04-lts'
Click on any threat for detailed analysis and mitigation recommendations
UBUNTU-CVE-2024-23672 0 A denial of service vulnerability exists in Apache Tomcat due to incomplete cleanup of WebSocket connections. WebSocket clients could keep connections open, causing increased resource consumption. This affects multiple Apache Tomcat versions from 8.5.0 through 8.5.98, 9.0.0-M1 through 9.0.85, 10.1.0-M1 through 10.1.18, and 11.0.0-M1 through 11.0.0-M16. Users are advised to upgrade to fixed versions 8.5.99, 9.0.86, 10.1.19, or 11.0.0-M17 to address the issue. Join the discussion | GCVE Database | 03/13/2024, 16:15:00 UTC Added: 07/16/2026, 10:40:17 UTC |
UBUNTU-CVE-2024-38286 0 Apache Tomcat versions from 11.0.0-M1 through 11.0.0-M20, 10.1.0-M1 through 10.1.24, and 9.0.13 through 9.0.89, as well as certain end-of-life versions, contain a vulnerability that allows resource allocation without limits or throttling. This can be exploited via the TLS handshake process to cause an OutOfMemoryError, potentially leading to denial of service. Fixed versions include 11.0.0-M21, 10.1.25, and 9.0.90. Join the discussion | GCVE Database | 11/07/2024, 08:15:00 UTC Added: 07/16/2026, 10:40:14 UTC |
UBUNTU-CVE-2024-52316 0 A vulnerability in Apache Tomcat allows authentication bypass if a custom Jakarta Authentication ServerAuthContext component throws an exception without setting an HTTP failure status. No known Jakarta Authentication components currently behave this way. The issue affects multiple Apache Tomcat versions including 8.5.0 through 8.5.100, 9.0.0-M1 through 9.0.95, 10.1.0-M1 through 10.1.30, and 11.0.0-M1 through 11.0.0-M26. Users should upgrade to fixed versions 11.0.0, 10.1.31, or 9.0.96 to address this vulnerability. Join the discussion | GCVE Database | 11/18/2024, 12:15:00 UTC Added: 07/16/2026, 10:40:14 UTC |
UBUNTU-CVE-2024-54677 0 An uncontrolled resource consumption vulnerability exists in the examples web application provided with Apache Tomcat, which can lead to denial of service. This affects multiple Apache Tomcat versions including 8.5.0 through 8.5.100, 9.0.0.M1 through 9.9.97, 10.1.0-M1 through 10.1.33, and 11.0.0-M1 through 11.0.1. Users are advised to upgrade to fixed versions 11.0.2, 10.1.34, or 9.0.98 to remediate the issue. Join the discussion | GCVE Database | 12/17/2024, 13:15:00 UTC Added: 07/16/2026, 10:40:14 UTC |
UBUNTU-CVE-2025-31651 0 A vulnerability in Apache Tomcat allows bypassing certain rewrite rules under specific, unlikely configurations. This could lead to bypassing security constraints enforced by those rewrite rules. The issue affects multiple versions of Apache Tomcat, including versions from 8.5.0 through 8.5.100, 9.0.0.M1 through 9.0.102, 10.1.0-M1 through 10.1.39, and 11.0.0-M1 through 11.0.5. Users are advised to upgrade to a fixed version to address this vulnerability. Join the discussion | GCVE Database | 04/28/2025, 20:15:00 UTC Added: 07/16/2026, 10:40:11 UTC |
UBUNTU-CVE-2025-46701 0 An improper handling of case sensitivity vulnerability exists in Apache Tomcat's CGI servlet, allowing bypass of security constraints applied to the pathInfo component of a URI. This affects multiple Apache Tomcat versions including 11.0.0-M1 through 11.0.6, 10.1.0-M1 through 10.1.40, 9.0.0-M1 through 9.0.104, and some older EOL versions such as 8.5.0 through 8.5.100. The issue is fixed in versions 11.0.7, 10.1.41, and 9.0.105. Users should upgrade to these fixed versions to address the vulnerability. Join the discussion | GCVE Database | 05/29/2025, 19:15:00 UTC Added: 07/16/2026, 10:40:07 UTC |
UBUNTU-CVE-2025-48988 0 A resource allocation vulnerability exists in Apache Tomcat versions from 11.0.0-M1 through 11.0.7, 10.1.0-M1 through 10.1.41, and 9.0.0.M1 through 9.0.105, including some older EOL versions such as 8.5.0 through 8.5.100. This flaw allows allocation of resources without limits or throttling, potentially leading to denial of service. Fixed versions are 11.0.8, 10.1.42, and 9.0.106. The vulnerability affects multiple Ubuntu package versions as listed. No known exploits in the wild have been reported. Join the discussion | GCVE Database | 06/16/2025, 15:15:00 UTC Added: 07/16/2026, 10:40:07 UTC |
UBUNTU-CVE-2025-48989 0 An Improper Resource Shutdown or Release vulnerability exists in Apache Tomcat, affecting versions from 11.0.0-M1 through 11.0.9, 10.1.0-M1 through 10.1.43, and 9.0.0-M1 through 9.0.107. This vulnerability is known as the 'made you reset' attack. Users are advised to upgrade to versions 11.0.10, 10.1.44, or 9.0.108 where the issue is fixed. Join the discussion | GCVE Database | 08/13/2025, 13:15:00 UTC Added: 07/16/2026, 10:40:07 UTC |
UBUNTU-CVE-2025-52520 0 An Integer Overflow vulnerability in Apache Tomcat affects certain multipart upload configurations, potentially allowing denial of service (DoS) by bypassing size limits. This impacts multiple Apache Tomcat versions from 6.0.37-1 through 11.0.8, including some end-of-life versions. The issue is fixed in Apache Tomcat versions 11.0.9, 10.1.43, and 9.0.107. Users are advised to upgrade to these fixed versions to mitigate the risk. Join the discussion | GCVE Database | 07/10/2025, 19:15:00 UTC Added: 07/16/2026, 10:40:03 UTC |
UBUNTU-CVE-2025-53506 0 An uncontrolled resource consumption vulnerability exists in Apache Tomcat HTTP/2 handling where a client that does not acknowledge the initial settings frame can cause the server to allow more concurrent streams than intended. This affects multiple Apache Tomcat versions including 8.5.x, 9.0.x, 10.1.x, and 11.0.x branches. The issue is fixed in Apache Tomcat versions 11.0.9, 10.1.43, and 9.0.107. Users are advised to upgrade to these or later versions to mitigate the vulnerability. Join the discussion | GCVE Database | 07/10/2025, 20:15:00 UTC Added: 07/16/2026, 10:40:03 UTC |
Showing 1 to 10 of 104 results