Information disclosure in Apache Software Foundation Tomcat

CVE-2026-34487

Insertion of Sensitive Information into Log File vulnerability in the cloud membership for clustering component of Apache Tomcat exposed the Kubernetes bearer token. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.20, from 1…

EPSS: 0.001 (22.2th percentile) — read the EPSS interpretation.