Apache Releases Security Advisories for Apache Tomcat

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

The Apache Software Foundation has released security advisories to address multiple vulnerabilities in Apache Tomcat. An attacker could exploit these vulnerabilities to cause a denial-of-service condition.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Apache security advisories for CVE-2020-13934 and CVE-2020-13935 and upgrade to the appropriate version.

This product is provided subject to this Notification and this Privacy & Use policy.

Apache Releases Security Advisories for Apache Tomcat

Please share your thoughts

CISA Adds One Known Exploited Vulnerability to Catalog

CISA and Partners Release Advisory on Black Basta Ransomware

CISA Releases Four Industrial Control Systems Advisories

ASD’s ACSC, CISA, and Partners Release Secure by Design Guidance on Choosing Secure and Verifiable Technologies

Apache Releases Security Advisories for Apache Tomcat

Please share your thoughts

Related Advisories

CISA Adds One Known Exploited Vulnerability to Catalog

CISA and Partners Release Advisory on Black Basta Ransomware

CISA Releases Four Industrial Control Systems Advisories

ASD’s ACSC, CISA, and Partners Release Secure by Design Guidance on Choosing Secure and Verifiable Technologies