Apache Releases Security Advisories for Apache Tomcat

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

America's Cyber Defense Agency

The Apache Software Foundation has released security advisories to address multiple vulnerabilities in Apache Tomcat. An attacker could exploit these vulnerabilities to cause a denial-of-service condition.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages users and administrators to review the Apache security advisories for CVE-2020-13934 and CVE-2020-13935 and upgrade to the appropriate version.

This product is provided subject to this Notification and this Privacy & Use policy.

Apache Releases Security Advisories for Apache Tomcat

Please share your thoughts

NSA, FBI, CISA, and Japanese Partners Release Advisory on PRC-Linked Cyber Actors

Mozilla Releases Security Advisories for Thunderbird and Firefox

CISA Releases Six Industrial Control Systems Advisories

CISA Adds Three Known Exploited Vulnerabilities to Catalog

Apache Releases Security Advisories for Apache Tomcat

Please share your thoughts

Related Advisories

NSA, FBI, CISA, and Japanese Partners Release Advisory on PRC-Linked Cyber Actors

Mozilla Releases Security Advisories for Thunderbird and Firefox

CISA Releases Six Industrial Control Systems Advisories

CISA Adds Three Known Exploited Vulnerabilities to Catalog