Early Access — Mondoo Vulnerability Intelligence is currently in preview.
Mondoo Vulnerability Intelligence
Search vulnerabilities and malicious packages across npm, PyPI, Go, GitHub Actions, VS Code, and more.
Search vulnerabilities and malicious packages across npm, PyPI, Go, GitHub Actions, VS Code, and more.
Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies.
Security Fix(es):
tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve (CVE-2025-31651)
tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE (CVE-2025-55752)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
1:9.0.87-1.el8_10.7Exploitability
AV:NAC:HPR:LUI:NScope
S:UImpact
C:HI:HA:HCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H