Skip to content

Commit 78fb72a

Browse files
committed
1 parent 1557ad3 commit 78fb72a

1 file changed

Lines changed: 8 additions & 8 deletions

File tree

advisories/github-reviewed/2026/04/GHSA-8mc5-53m5-3qj2/GHSA-8mc5-53m5-3qj2.json

Lines changed: 8 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -1,18 +1,14 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-8mc5-53m5-3qj2",
4-
"modified": "2026-04-10T22:07:39Z",
4+
"modified": "2026-04-10T22:07:42Z",
55
"published": "2026-04-09T21:31:29Z",
66
"aliases": [
77
"CVE-2026-32990"
88
],
99
"summary": "Apache Tomcat has an Improper Input Validation vulnerability",
1010
"details": "Improper Input Validation vulnerability in Apache Tomcat due to an incomplete fix of CVE-2025-66614.\n\nThis issue affects Apache Tomcat: from 11.0.15 through 11.0.19, from 10.1.50 through 10.1.52, from 9.0.113 through 9.0.115.\n\nUsers are recommended to upgrade to version 11.0.20, 10.1.53 or 9.0.116, which fix the issue.",
1111
"severity": [
12-
{
13-
"type": "CVSS_V3",
14-
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"
15-
},
1612
{
1713
"type": "CVSS_V4",
1814
"score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"
@@ -22,7 +18,7 @@
2218
{
2319
"package": {
2420
"ecosystem": "Maven",
25-
"name": "org.apache.tomcat:tomcat-catalina"
21+
"name": "org.apache.tomcat:tomcat-coyote"
2622
},
2723
"ranges": [
2824
{
@@ -41,7 +37,7 @@
4137
{
4238
"package": {
4339
"ecosystem": "Maven",
44-
"name": "org.apache.tomcat:tomcat-catalina"
40+
"name": "org.apache.tomcat:tomcat-coyote"
4541
},
4642
"ranges": [
4743
{
@@ -60,7 +56,7 @@
6056
{
6157
"package": {
6258
"ecosystem": "Maven",
63-
"name": "org.apache.tomcat:tomcat-catalina"
59+
"name": "org.apache.tomcat:tomcat-coyote"
6460
},
6561
"ranges": [
6662
{
@@ -203,6 +199,10 @@
203199
{
204200
"type": "WEB",
205201
"url": "https://lists.apache.org/thread/1nl9zqft0ksqlhlkd3j4obyjz1ghoyn7"
202+
},
203+
{
204+
"type": "WEB",
205+
"url": "https://www.herodevs.com/vulnerability-directory/cve-2026-32990"
206206
}
207207
],
208208
"database_specific": {

0 commit comments

Comments
 (0)