CVE-2025-46701

Improper Handling of Case Sensitivity vulnerability in Apache Tomcat's GCI servlet allows security constraint bypass of security constraints that apply to the pathInfo component of a URI mapped to the CGI servlet.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.6, from 10.1.0-M1 through 10.1.40, from 9.0.0.M1 through 9.0.104. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 though 8.5.100. Other, older, EOL versions may also be affected.

Users are recommended to upgrade to version 11.0.7, 10.1.41 or 9.0.105, which fixes the issue.

Published: May 29, 2025
Updated: Nov 12, 2025
CVE: CVE-2025-46701
GHSA: GHSA-h2fw-rfh5-95r3
Severity: Low
Exploit:

CVSS v3:

Severity: High
Score: 7.3
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWEs:

CWE-178

Affected Software
References

Software	From	Fixed in
org.apache.tomcat / tomcat-catalina	9.0.0.M1	9.0.105
org.apache.tomcat / tomcat-catalina	10.1.0-M1	10.1.41
org.apache.tomcat / tomcat-catalina	11.0.0-M1	11.0.7
org.apache.tomcat.embed / tomcat-embed-core	9.0.0.M1	9.0.105
org.apache.tomcat.embed / tomcat-embed-core	10.1.0-M1	10.1.41
org.apache.tomcat.embed / tomcat-embed-core	11.0.0-M1	11.0.7
apache / tomcat	10.1.0	10.1.41
apache / tomcat	11.0.0	11.0.7
apache / tomcat	9.0.0	9.0.105
org.apache.tomcat / tomcat-catalina	8.5.0	8.5.100.x
org.apache.tomcat.embed / tomcat-embed-core	8.5.0	8.5.100.x

Vulnerability Database

300,444

CVE-2025-46701

Deep Security Visibility Without the Complexity