<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Tomcat 11.0.x - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/products/tomcat-11.0.x/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Wed, 15 Jul 2026 14:34:10 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/products/tomcat-11.0.x/feed.xml" rel="self" type="application/rss+xml"/><item><title>Multiple Vulnerabilities in Apache Tomcat</title><link>https://feed.craftedsignal.io/briefs/2026-07-multiple-vulnerabilities-apache-tomcat/</link><pubDate>Wed, 15 Jul 2026 14:34:10 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-multiple-vulnerabilities-apache-tomcat/</guid><description>Multiple vulnerabilities, including CVE-2026-59083 and CVE-2026-59084, have been discovered in Apache Tomcat versions 10.1.x prior to 10.1.57, 11.0.x prior to 11.0.24, and 9.0.x prior to 9.0.120, allowing an attacker to bypass security policies and cause an unspecified security issue.</description><content:encoded><![CDATA[<p>CERT-FR has issued an advisory regarding multiple vulnerabilities, specifically CVE-2026-59083 and CVE-2026-59084, identified in various versions of Apache Tomcat. These flaws affect Tomcat versions 10.1.x prior to 10.1.57, 11.0.x prior to 11.0.24, and 9.0.x prior to 9.0.120. Exploitation of these vulnerabilities could allow an attacker to bypass existing security policies and potentially lead to an additional, unspecified security compromise within the affected Apache Tomcat instances. The nature of the unspecified security issue has not been detailed by the vendor. This advisory highlights the critical need for administrators to promptly update their Tomcat installations to mitigate these risks and prevent potential unauthorized access or system degradation.</p>
<h2 id="attack-chain">Attack Chain</h2>
<p>The provided intelligence describes multiple vulnerabilities but does not detail a specific attack chain or observed exploitation in the wild. The vulnerabilities are described as allowing a security policy bypass and an unspecified security issue.</p>
<h2 id="impact">Impact</h2>
<p>The successful exploitation of these vulnerabilities could result in attackers bypassing security controls within Apache Tomcat, potentially leading to unauthorized access, modification of data, or disruption of services. While the &quot;unspecified security issue&quot; prevents a precise description of the ultimate impact, any successful policy bypass often serves as a stepping stone for further, more severe attacks, including data exfiltration, system compromise, or denial of service. The widespread use of Apache Tomcat in enterprise environments means that a broad range of organizations could be affected if these vulnerabilities are left unpatched.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Patch Apache Tomcat to the latest secure versions as referenced in the vendor security bulletins to address CVE-2026-59083 and CVE-2026-59084.</li>
<li>Specifically, update Apache Tomcat 10.1.x to version 10.1.57 or later, 11.0.x to 11.0.24 or later, and 9.0.x to 9.0.120 or later.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">threat</category><category>vulnerability</category><category>apache</category><category>tomcat</category><category>web-server</category></item></channel></rss>