Improper input validation in Apache Software Foundation Tomcat

CVE-2026-32990

Improper Input Validation vulnerability in Apache Tomcat due to an incomplete fix of CVE-2025-66614. This issue affects Apache Tomcat: from 11.0.15 through 11.0.19, from 10.1.50 through 10.1.52, from 9.0.113 through 9.0.115. Users are re…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.002 (43.1th percentile) — read the EPSS interpretation.