Apache Tomcat 9.0.0.M1 < 9.0.113 multiple vulnerabilities

Version 1.3

Mar 17, 2026, 4:16 PM

CVSS metrics ("CVSSv2 score" set to 9.4)
CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:N")
CVSSv2 severity (based on CVE-2025-66614, severity increased from "Medium" to "High")