Vulnerability Database
289,598
Total vulnerabilities in the database
CVE-2025-48988
Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat.
This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.7, from 10.1.0-M1 through 10.1.41, from 9.0.0.M1 through 9.0.105.
Users are recommended to upgrade to version 11.0.8, 10.1.42 or 9.0.106, which fix the issue.
| Software | From | Fixed in |
|---|---|---|
org.apache.tomcat / tomcat-catalina
|
11.0.0-M1 | 11.0.8 |
|
org.apache.tomcat / tomcat-catalina
|
10.1.0-M1 | 10.1.42 |
|
org.apache.tomcat / tomcat-catalina
|
9.0.0.M1 | 9.0.106 |
|
org.apache.tomcat.embed / tomcat-embed-core
|
11.0.0-M1 | 11.0.8 |
|
org.apache.tomcat.embed / tomcat-embed-core
|
10.1.0-M1 | 10.1.42 |
|
org.apache.tomcat.embed / tomcat-embed-core
|
9.0.0.M1 | 9.0.106 |
| apache / tomcat | 10.1.0 | 10.1.42 |
| apache / tomcat | 11.0.0 | 11.0.8 |
| apache / tomcat | 9.0.0 | 9.0.106 |
- http://www.openwall.com/lists/oss-security/2025/06/16/1
- https://github.com/apache/tomcat/commit/2b0ab14fb55d4edc896e5f1817f2ab76f714ae5e
- https://github.com/apache/tomcat/commit/cdde8e655bc1c5c60a07efd216251d77c52fd7f6
- https://github.com/apache/tomcat/commit/ee8042ffce4cb9324dfd79efda5984f37bbb6910
- https://lists.apache.org/thread/nzkqsok8t42qofgqfmck536mtyzygp18
- https://tomcat.apache.org/security-10.html
- https://tomcat.apache.org/security-11.html
- https://tomcat.apache.org/security-9.html