GHSA-4x29-79gh-6v8qCriticalCVSS 9.1

Detection of Error Condition Without Action vulnerability in Apache Tomcat when configuring CRLs...

Published
June 29, 2026
Last Modified
June 30, 2026

🔗 CVE IDs covered (1)

📋 Description

Detection of Error Condition Without Action vulnerability in Apache Tomcat when configuring CRLs for a FFM based connector.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.22, from 10.1.0-M7 through 10.1.55, from 9.0.83 through 9.0.118.

Users are recommended to upgrade to version 11.0.23, 10.1.56 or 9.0.119, which fixes the issue.

🔗 References (4)