GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
12 advisories
Improper Resource Shutdown or Release in Apache Tomcat
High
CVE-2017-5650
was published
for
org.apache.tomcat:tomcat
(Maven)
May 13, 2022
**UNSUPPORTED WHEN ASSIGNED** GzipHandler causes part of request body to be seen as request body of a separate request
High
CVE-2024-13009
was published
for
org.eclipse.jetty:jetty-server
(Maven)
May 8, 2025
Apache Tomcat Improper Resource Shutdown or Release vulnerability
High
CVE-2025-48989
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
Aug 13, 2025
Apache Tomcat Vulnerable to Improper Resource Shutdown or Release
Low
CVE-2025-61795
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
Oct 27, 2025
Jenkins has a Denial of service vulnerability in HTTP-based CLI
High
CVE-2025-67635
was published
for
org.jenkins-ci.main:cli
(Maven)
Dec 10, 2025
Undertow MadeYouReset HTTP/2 DDoS Vulnerability
High
CVE-2025-9784
was published
for
io.undertow:undertow-core
(Maven)
Sep 2, 2025
ProTip!
Advisories are also available from the
GraphQL API